Re: (RADIATOR) More authentication Attributes
Requiem, We had / have the same problem. Besides radiator, we also have our own radius server (but we're trying to get rid of it, VPN by VPN). The subscribers have an attribute 'radiusProfile' in their object. Whenever the value equals 1 they should have normal access, 0 no access and for instance 2 some different set of attributes: eg. a set of ip-filters. We forgot about the 2 for now. Somebody suggested to use the PreAuthHook to add an NV pair: add_attribute(radiusProfile, 1) and add another attribute in the directory, radiusCheck. An object now looks like this: dn: cn=user,... radiusProfile = 1 radiusCheck = radiusProfile=1 ... The first attribute is still necessary for the other Radius server, and the second to make it work with Radiator. I think it would be a nice feature to be able to check the retrieved attributes in a hook like PostAuthHook, and be able to reject or accept it based on the vlaue (or even better, select a profile at that point.) But anyway, this mechanisms does the job perfect for us. - Wilbert -Original Message-From: Requiem Aurelien (Ext/NTC) [EMAIL PROTECTED]To: Radiator (E-mail) [EMAIL PROTECTED]Date: donderdag 8 juli 1999 16:26Subject: (RADIATOR) More authentication AttributesHelloHow can i add more authentication attributesshall i use CheckAttr ?I need to anthenticate a user via 3 informations1) Name2) Password3) Calling-Station-IdAll of my user are into a ldap serverThanks a lot to answer me Recycle your PC, Get Linux...Recycle your Windows, Get Kde...=Archive at http://www.thesite.com.au/~radiator/To unsubscribe, email '[EMAIL PROTECTED]' with'unsubscribe radiator' in the body of the message.
(RADIATOR) More authentication Attributes
Hello How can i add more authentication attributes shall i use CheckAttr ? I need to anthenticate a user via 3 informations 1°) Name 2°) Password 3°) Calling-Station-Id All of my user are into a ldap server Thanks a lot to answer me Recycle your PC, Get Linux... Recycle your Windows, Get Kde... ÿ Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) More authentication Attributes
On Jul 8, 5:03pm, Requiem Aurelien (Ext/NTC) wrote: Subject: (RADIATOR) More authentication Attributes Hello How can i add more authentication attributes shall i use CheckAttr ? Yes. I need to anthenticate a user via 3 informations 1°) Name 2°) Password 3°) Calling-Station-Id All of my user are into a ldap server You will want something like this: AuthBy LDAP .. UsernameAttruid PasswordAttruserPassword CheckAttr checkattr /AuthBy and in LDAP: uid: mike userPassword: fred checkattr: Calling-Station-Id=123456 Hope that helps. Cheers. Thanks a lot to answer me Recycle your PC, Get Linux... Recycle your Windows, Get Kde... Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- End of excerpt from Requiem Aurelien (Ext/NTC) -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, etc etc on Unix, Win95/8, NT, Rhapsody ÿ Archive at http://www.thesite.com.au/~radiator/ To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.