Hello Colin -
On Thu, 20 Apr 2000, colinc wrote:
> Hi,
>
> Was browsing throught the archives, and i noticed that some
> access-requests have more attributes than the default.
> eg :
> > Code: Access-Request
> > Identifier: 209
> > Authentic: G$<205>D<151><157><173>qf<205><172>7<249>*<198><169>
> > Attributes:
> > User-Name = "user"
> > CHAP-Password =
> > "<1><213><222>g:M<180><189>Xw<190><213>"e<159><156><231>"
> > NAS-Identifier = "204.111.111.11"
> > NAS-Port = 6307
> > NAS-Port-Type = Async
> > Service-Type = Framed-User
> > Framed-Protocol = PPP
> > State = ""
> > Client-Port-DNIS = "748XXXX"
> > Acct-Session-Id = "308488437"
> > Ascend-Data-Rate = 31200
> > Ascend-Xmit-Rate = 33600
>
The first thing to understand about Radius is there is no default. Different
NAS vendors implement different sets of attributes in the Access and Accounting
requests.
> Where do i specify what access-request attributes i want to check?
>
It depends on which AuthBy you are using. If you are using the "default-user"
file that we have discussed previously, you would do something like this:
# file %D/default-users
DEFAULT *some check items here*, Auth-Type = CheckUNIX, Group = Group1
*the reply items here*
.......
Note that in a users file, the first line contains the check items (starting at
column 1) and the second and subsequent lines contain the reply items (with
white space in column 1).
Have a read through the manual and the example configuration files in the
distribution to get a feel for how to do various things with the different
AuthBy clauses.
hth
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
