Hello Al -
As mentioned in my previous mail, an Auth-Type check item will pass the authentication to another AuthBy clause.
Here is an example (similar to your own case):
# define AuthBy clauses
<AuthBy FILE>
Identifier CheckUser
....
</AuthBy><AuthBy LDAP2>
Identifier CheckLDAP
.....
</AuthBy># define Realms or Handlers
<Handler ...>
# call the AuthBy FILE clause, which in turn will call the AuthBy LDAP2 clause
AuthBy CheckUser
....</Handler>
Now the file that is used by the AuthBy FILE will contain this:
# define users with reply attributes, but do authentication from LDAP
# "Auth-Type = CheckLDAP" will pass the authentication to the AuthBy LDAP2 clause
someuser Auth-Type = CheckLDAP, ....
.....To say any more about your current problem I will need to see the configuration file (no secrets) together with a trace 4 debug from Radiator showing what is happening.
regards
Hugh
On Friday, Sep 5, 2003, at 01:39 Australia/Melbourne, Charles Alexander McCain wrote:
Hugh,
I tried, what you had told me, it seems to work that way, however some of
the static users aren't getting their ip's . This is happening at random,
and i cannot tell that there is anything special about them besides being
static. The nas reports that they cannot pull the ip.
The trace 4 i sent previously should show the problem we're seeing.
I can't seem to figure this one out. Seems like a very strange problem
with it happening at random.
Thanks, Al
On Thu, 4 Sep 2003, Charles Alexander McCain wrote:
Hugh,
What about my dynamic users ? Dialup and ADSL share the same realm. If i
have a realm with only AuthBY SQL in it, how exactly will they interact
with ldap ? I'm sure you're right, i am just curious as to how that works.
Thanks, Al
On Thu, 4 Sep 2003, Hugh Irvine wrote:
Hello Al -
As I can't find your name or email address in our database, I wonder whether you could tell me the name of the company that has purchased this copy of Radiator? Please reply to me directly.
I understand what you are trying to do, but your configuration file is
not correct.
The Auth-Type = CheckLDAP check item in your SQL database will cause Radiator to send the authentication to LDAP. Therefore you only need the AuthBy SQL clause in the Realm (you can think of it like a subroutine call).
<Realm DEFAULT> # the AuthBy LDAP2 clause will be called from the AuthBy SQL clause <AuthBy SQL> ..... </AuthBy> ..... </Realm>
regards
Hugh
NB: have you included a copy of your configuration file (no secrets), together with a trace 4 debug showing what is happening?
-- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence.
=== Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
