Hello Mohammed,
I think that the error message is due your SQL query doesn't return
anything to Expiration Check item and you have AddToReply
Session-Timeout = "until Expiration" in configuration.
Could you tell us more how the system should work?
Who should/will update EXPIRATION field in database?
Best Regards,
Sami
On 05/27/2015 11:32 AM, Mohammed Alhaj Ali wrote:
> Dears,
>
>
>
> Recently we had some change on our network, as we replaced cisco
> platform with Huawei BRAS, now we’re unable to get prober accounting
> specially, when customer account are newly created so we can’t get
> account activation on the first logging in order to calculate
> Session-timeout, below are the error logs plus the part of the
> configuration:
>
>
>
>
>
>
>
>
>
>
>
> ################################
>
>
>
> <AuthBy SQL>
>
> AccountingTable DSL_ACCOUNTING
>
> AcctColumnDef USERNAME,User-Name,%A
>
> AcctColumnDef TIME_STAMP,Timestamp,integer
>
> AcctColumnDef ACCTSTATUSTYPE,Acct-Status-Type
>
> AcctColumnDef ACCTDELAYTIME,Acct-Delay-Time,integer
>
> AcctColumnDef ACCTINPUTOCTETS,Acct-Input-Octets,integer
>
> AcctColumnDef ACCTOUTPUTOCTETS,Acct-Output-Octets,integer
>
> AcctColumnDef ACCTSESSIONID,Acct-Session-Id
>
> AcctColumnDef ACCTSESSIONTIME,Acct-Session-Time,integer
>
> AcctColumnDef acctterminatecause, Acct-Terminate-Cause
>
> AcctColumnDef NASIDENTIFIER,NAS-Identifier
>
> AcctColumnDef NASPORT,NAS-Port,integer
>
> AcctColumnDef FRAMEDIPADDRESS,Framed-IP-Address
>
> #AcctInsertQuery insert into %0 (%1) values (%2)
>
> AuthColumnDef 0,User-Password, check
>
> AuthColumnDef 1,Expiration, check
>
> AuthColumnDef 2,Simultaneous-Use, check
>
> AuthColumnDef 3,Huawei-Domain-Name, reply
>
> AuthColumnDef 4,GENERIC, reply
>
> AuthSelect select PASSWORD, to_char(EXPIRATION, 'yyyy-mm-dd HH24:MI:SS')
> Expiration, MAXSESSIONS, EXPIRATION_D "Huawei-Domain-Name" ,
> Session_Timeout "Session-Timeout" from ITC_ACCOUNTS_H where
> upper(USERNAME)=upper('%n')
>
> CachePasswordExpiry 86400
>
> AddToReply Service-Type=Framed-User, Framed-Protocol=PPP,
> Framed-MTU=1492, Session-Timeout = "until Expiration"
>
> ConnectionAttemptFailedHook sub {my $self = shift;my $dbsource =
> shift;my $dbusername = shift;my $dbauth =
> shift;$self->log($main::LOG_ERR, "Could not connect to SQL database with
> DBI->connect $dbsource, $dbusername, $dbauth: $@ $DBI::errstr");}
>
> DBSource dbi:ODBC:ORADB
>
> DBUsername user
>
> DBAuth password
>
> DateFormat %b %e, %Y %H:%M
>
> EAPAnonymous anonymous
>
> EAPContextTimeout 1000
>
> EAPFAST_PAC_Lifetime 7776000
>
> EAPFAST_PAC_Reprovision 2592000
>
> EAPTLS_MaxFragmentSize 2048
>
> EAPTLS_PEAPVersion 1
>
> EAPTLS_SessionResumption 1
>
> EAPTLS_SessionResumptionLimit 43200
>
> EAPTLS_VerifyDepth 1
>
> FailureBackoffTime 600
>
> Identifier HUW_POOL
>
> NoConnectionsHook sub { my $self = shift;$self->log($main::LOG_ERR,
> "Could not connect to any SQL database. Request is ignored. Backing off
> for $self- >{FailureBackoffTime} seconds");}
>
> NullPasswordMatchesAny 1
>
> PasswordPrompt password
>
> SIPDigestRealm DefaultSipRealm
>
> Timeout 60
>
> </AuthBy>
>
>
>
>
>
>
>
> LOG:
>
>
>
> Wed May 27 09:09:39 2015: DEBUG: Handling request with Handler
> 'Realm=/^(512|1024|2048)\.itc\.net\.sa$/'
>
> Wed May 27 09:09:39 2015: DEBUG: Deleting session for
> [email protected], 87.101.255.184, 33554442
>
> Wed May 27 09:09:39 2015: DEBUG: Handling with Radius::AuthSQL: HUW_POOL
>
> Wed May 27 09:09:39 2015: DEBUG: Handling with Radius::AuthSQL: HUW_POOL
>
> Wed May 27 09:09:39 2015: DEBUG: Query is: 'select PASSWORD,
> to_char(EXPIRATION, 'yyyy-mm-dd HH24:MI:SS') Expiration, MAXSESSIONS,
> EXPIRATION_D "Huawei-Domain-Name" , Session_Timeout "Session-Timeout"
> from ITC_ACCOUNTS_H where
> upper(USERNAME)=upper('[email protected]')':
>
> Wed May 27 09:09:39 2015: DEBUG: Radius::AuthSQL looks for match with
> [email protected] [[email protected]]
>
> Wed May 27 09:09:39 2015: DEBUG: Radius::AuthSQL ACCEPT: :
> [email protected] [[email protected]]
>
> Wed May 27 09:09:39 2015: DEBUG: Session-Timeout="until ValidTo" was
> specified, but there was no ValidTo or Expiration check item for this
> user. Ignored.
>
> Wed May 27 09:09:39 2015: DEBUG: AuthBy SQL result: ACCEPT,
>
> Wed May 27 09:09:39 2015: DEBUG: Access accepted for
> [email protected] <mailto:[email protected]>
>
>
>
> Wed May 27 09:09:39 2015: ERR: There is no value named until Expiration
> for attribute Session-Timeout. Using 0.
>
>
>
> Wed May 27 09:09:39 2015: DEBUG: Packet dump:
>
> *** Sending to 87.101.255.184 port 1812 ....
>
>
>
> Mohammed Alhaj Ali
> Integrated Telecom Co. Ltd.
> Tel : +966(11) 406-2222 Ext.2384
> Fax : +966(11) 406-2221
> GSM :
> [email protected] <mailto:[email protected]>
>
> <http://www.execloud.net>
>
> www.itc.sa <http://www.itc.sa>
>
>
>
>
>
> _______________________________________________
> radiator mailing list
> [email protected]
> http://www.open.com.au/mailman/listinfo/radiator
>
--
Sami Keski-Kasari <[email protected]>
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.
_______________________________________________
radiator mailing list
[email protected]
http://www.open.com.au/mailman/listinfo/radiator
