Re: Can I set Autz-Type in hints file?
and looking at the source of rlm_files.c, check_pairs is config_items. It's a bit confusing to use different words for the same thing. So submit patches. This isn't a commerical product where people get paid money to do copy editing, so you have to expect some level of problems. And I'll be honest, people who complain about free software really *do* have the choice of paying for commercial software, with fancy copy-edited documentation. No one here is getting paid to listen to complaints about how crappy the product is. I didn't complain, and I'm willing to submit patches to the documentation, (actually I've done some simple editing in the WiKi). Of course I don't have the knowledge you have about freeradius, so I still have to ask you (or some other of the knowledgeable people here) :) Anyway, freeradius is great software (never said it was crappy), keep up the good work. -- damjan | дамјан This is my jabber ID -- [EMAIL PROTECTED] -- not my mail address!!! - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Can I set Autz-Type in hints file?
I have this in the hints file: DEFAULT Called-Station-Id == 987654321, Autz-Type := DialUp I don't think that will do what you want. I suggest using the users file. Yep, I tried it and it doesn't work when in the hints file... It works when I set that DEFAULT entry in the users file. Can you explain what the difference is? Reading the Freeradius documentation I supposed that in the preprocess module the Autz-Type config value is setup, and then the authorize would consider that and branch appropriately? -- damjan | дамјан This is my jabber ID -- [EMAIL PROTECTED] -- not my mail address!!! - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Can I set Autz-Type in hints file?
Damjan [EMAIL PROTECTED] wrote: Yep, I tried it and it doesn't work when in the hints file... It works when I set that DEFAULT entry in the users file. Can you explain what the difference is? Read the documentation for the differences between the users file and the hints file. Those are the differences. Reading the Freeradius documentation I supposed that in the preprocess module the Autz-Type config value is setup, and then the authorize would consider that and branch appropriately? No. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Can I set Autz-Type in hints file?
Yep, I tried it and it doesn't work when in the hints file... It works when I set that DEFAULT entry in the users file. Can you explain what the difference is? Read the documentation for the differences between the users file and the hints file. Those are the differences. Well, I must say the documentation for freeradius is a bit of a mess... I'm guessing from the comments in the hints file that the preprocess module doesn't set the config items it only modifies the request items (or adds to them)... quick searching through the source implies this. Well, while on the documentaion... the aaa.txt file says During authorization and authentication processes, there are 3 lists of RADIUS attributes supported by FreeRADIUS: request items, config items and reply items. but the processing_users_file says A request has initially an empty check list and an empty reply list attached to it. So each request has 3 A/V pairlists associated with it - the request list (as originated from the terminal server) - the check list (initially empty) - the reply list (initially empty) and looking at the source of rlm_files.c, check_pairs is config_items. It's a bit confusing to use different words for the same thing. -- damjan | дамјан This is my jabber ID -- [EMAIL PROTECTED] -- not my mail address!!! - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Can I set Autz-Type in hints file?
Damjan [EMAIL PROTECTED] wrote: Well, I must say the documentation for freeradius is a bit of a mess... As always, patches are welcome. Now that the Wiki exists, it's even easier to submit docs. and looking at the source of rlm_files.c, check_pairs is config_items. It's a bit confusing to use different words for the same thing. So submit patches. This isn't a commerical product where people get paid money to do copy editing, so you have to expect some level of problems. And I'll be honest, people who complain about free software really *do* have the choice of paying for commercial software, with fancy copy-edited documentation. No one here is getting paid to listen to complaints about how crappy the product is. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Can I set Autz-Type in hints file?
I have this in the hints file:
DEFAULT Called-Station-Id == 987654321, Autz-Type := DialUp
And this in radiusd.conf:
files dunfiles {
usersfile = ${confdir}/users.dun
acctusersfile = ${confdir}/acct_users
preproxy_usersfile = ${confdir}/preproxy_users
compat = no
}
...
authorize {
Autz-Type DialUp {
dunfiles
}
I don't have much more in authorize section:
preprocess
chap
mschap
suffix
But when I make a request with Called-Station-Id = 987654321, I get
this:
modcall: entering group authorize for request 1
hints: Matched DEFAULT at 78
modcall[authorize]: module preprocess returns ok for request 1
...
modcall: group authorize returns ok for request 1
auth: No authenticate method (Auth-Type) configuration found for the request:
Rejecting the user
auth: Failed to validate the user.
I don't see anywhere that dunfiles instance is used?
--
damjan | дамјан
This is my jabber ID -- [EMAIL PROTECTED] -- not my mail address!!!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Can I set Autz-Type in hints file?
Damjan [EMAIL PROTECTED] wrote: I have this in the hints file: DEFAULT Called-Station-Id == 987654321, Autz-Type := DialUp I don't think that will do what you want. I suggest using the users file. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
