Re: [RADIATOR] max reauthentication
Hello Judy, I have one addition to Hugh's reply. All NASses are doing anything if you doesn't specify also Termination-Action attribute. The Line below should do the trick with most of NASes AddToReply Session-Timeout = nn, Termination-Action=1 Termination-Action=1 means re-authentication. Best Regards, Sami On 03/22/2014 01:44 AM, Hugh Irvine wrote: > > Hello Judy - > > There is no default. > > You can set the Session-Timeout value to whatever you wish in the RADIUS > accept accept. > > Depending on what else you are doing, something like this: > > ….. > > # whatever AuthBy you are using > # add the number of seconds you wish for Session-Timeout > # where “nn” below is the number of seconds > > > > ….. > > AddToReply Session-Timeout = nn > > > > ….. > > See section 13.2.8 in the Radiator 4.12.1 reference manual (“doc/ref.pdf”). > > regards > > Hugh > > > > On 22 Mar 2014, at 09:21, Judy Angel wrote: > >> >> Please see the reply from the wireless controller vendor. >> >>> the re-auth timer can be set by the RADIUS server. It is the >>> Session-Timeout attribute. It would be good to see what the RADIUS is >>> presently configured for >> >> What is the default setting >> Thanks >> Judy >> >> --On 19 March 2014 23:22 + Alan Buxey wrote: >> >>> It's usually a function of your NAS (eg wireless controller). Check its >>> settings for session-timeout ... which is usually an attribute that you >>> can send back from your RADIATOR server in the access-accept packet too >>> (though you may need to change your controller setting so that it honours >>> that value) >>> >>> Alan >> >> >> >> >> ___ >> radiator mailing list >> radiator@open.com.au >> http://www.open.com.au/mailman/listinfo/radiator > > > -- > > Hugh Irvine > h...@open.com.au > > Radiator: the most portable, flexible and configurable RADIUS server > anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, > Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, > TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, > DIAMETER etc. > Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc. > > ___ > radiator mailing list > radiator@open.com.au > http://www.open.com.au/mailman/listinfo/radiator > -- Sami Keski-Kasari Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] max reauthentication
Hello Judy - There is no default. You can set the Session-Timeout value to whatever you wish in the RADIUS accept accept. Depending on what else you are doing, something like this: ….. # whatever AuthBy you are using # add the number of seconds you wish for Session-Timeout # where “nn” below is the number of seconds ….. AddToReply Session-Timeout = nn ….. See section 13.2.8 in the Radiator 4.12.1 reference manual (“doc/ref.pdf”). regards Hugh On 22 Mar 2014, at 09:21, Judy Angel wrote: > > Please see the reply from the wireless controller vendor. > >> the re-auth timer can be set by the RADIUS server. It is the >> Session-Timeout attribute. It would be good to see what the RADIUS is >> presently configured for > > What is the default setting > Thanks > Judy > > --On 19 March 2014 23:22 + Alan Buxey wrote: > >> It's usually a function of your NAS (eg wireless controller). Check its >> settings for session-timeout ... which is usually an attribute that you >> can send back from your RADIATOR server in the access-accept packet too >> (though you may need to change your controller setting so that it honours >> that value) >> >> Alan > > > > > ___ > radiator mailing list > radiator@open.com.au > http://www.open.com.au/mailman/listinfo/radiator -- Hugh Irvine h...@open.com.au Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS, TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP, DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare etc. ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] max reauthentication
Please see the reply from the wireless controller vendor. > the re-auth timer can be set by the RADIUS server. It is the > Session-Timeout attribute. It would be good to see what the RADIUS is > presently configured for What is the default setting Thanks Judy --On 19 March 2014 23:22 + Alan Buxey wrote: > It's usually a function of your NAS (eg wireless controller). Check its > settings for session-timeout ... which is usually an attribute that you > can send back from your RADIATOR server in the access-accept packet too > (though you may need to change your controller setting so that it honours > that value) > > Alan ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
Re: [RADIATOR] max reauthentication
It's usually a function of your NAS (eg wireless controller). Check its settings for session-timeout ... which is usually an attribute that you can send back from your RADIATOR server in the access-accept packet too (though you may need to change your controller setting so that it honours that value) Alan___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator
[RADIATOR] max reauthentication
Hi I have noticed in the log file that eduroam connection get reauthenticated frequently but have not spotted anything in the documentation regarding this. Can you please advise how the time between authentication can be increased. Thanks Judy Angel University of Hertfordshire ___ radiator mailing list radiator@open.com.au http://www.open.com.au/mailman/listinfo/radiator