Thanks, I solved it before reading this mail. I just logged in to post the
solution when I saw your reply :)
So, here's the solution for anyone interested in forwarding authentication
requests through freeRADIUS servers:
I used aaa_proxy_authorize (which seems fairly logical, since I am using a
foreign server for authentication) like this:
aaa_proxy_authorize("", "$fu"), where $fu is the URI of the "From" header
(which should contain your home domain).
To allow RADIUS forwarding, the desired realm should be declared in
freeRADIUS' proxy.conf, along with its corresponding IP and shared secret:
home_server HomeServerName {
type = auth
ipaddr = <RADIUS server IP address to which requests should be forwarded>
port = 1812
secret = xxx #shared with the foreign RADIUS
server
}
home_server_pool PoolName {
type = fail-over
home_server = HomeServerName
}
realm RealmName { #RealmName is the domain specified in the
>From URI
auth_pool = PoolName
}
One more thing, you need to declare the RADIUS proxy's IP and shared secret
in the "home" RADIUS clients.conf file.
That's it. Enjoy!
_______________________________________________
Users mailing list
[email protected]
http://lists.opensips.org/cgi-bin/mailman/listinfo/users
