Do you mean using the same username at the same time, or ever?
A couple of things come to mind:
1. Enable Simultaneous-Use checking to allow only one session per user at any one time.
2. Use the Calling-Station-Id attribute in your authorization - ie, the user must call from this phone number or modem mac address depending on the access type (dialup/DSL/etc). Not sure if this has legal consequences with privacy laws though...
Not sure if there is anything else you can do???
Mike
Alex wrote:
Hi all.
I have a question. I would like to know how i can prevent using the same username and password through the radius.
If i have 2 users who takes the same username and password, both of them pass authentication, If there any possibility to disable 2-nd.
The goal is to prevent fraud and using the same username and password.
Thanks.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html