Expiration, Counter and Reset Value
Are there any ways I can do these in freeradius (0.4)?
1. 'Expiration' will be set based on firt login date.
i.e. an account will expired 90 days after
first usage.
Expiration = FirstLoginDate + 90 Days
2. User-defined reset value in the counter module.
i.e. reset = 14 # counter will reset to zero after 14 days
reset = 60 # resets after two months
Also, can i have another the same counter module but with a different
reset value? i.e.
counter {
...
reset = daily
...
}
counter2 {
...
reset = monthly
...
}
Hope you'll be more patient to my newbie questions =)
Thanks again guys for your support!
yo!
jessie
Feliz Navidad!
---
Don't Panic! This mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.309 / Virus Database: 170 - Release Date: 12/17/2001
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Monthly-Time-Limit and Total-Time-Limit
Thank you very much Sir Alan! you rock :) I've successfuly configured freeradius 0.4 in my freebsd box, and it seems to be working very well now. i have a cisco nas configured too and the aaa via the mysql module. My problem now is that I want to implement ICradius' 'Monthly-Time-Limit' and 'Total-Time-Limit' attributes but there seems to be no support yet to these in freeradius. Am I right or is it supported already? If not, is there a way I can do this in freeradius? Any suggestions? Thanks again! jessie Feliz Navidad! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Monday, December 17, 2001 8:07 AM To: [EMAIL PROTECTED] Subject: Re: Login-Time problem "power jessie" <[EMAIL PROTECTED]> wrote: > i also wonder what does ':=' do? how does it differ from '=='? 'man users' > also, is it possible for 'Login-Time' to have two or more > time span in a day, say in Monday 9:00 - 10:00 AM and then > 1:00 - 3:00 PM. can it be done? Yes. See the documentation that comes with the server. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html --- This incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001 --- Don't Panic! This mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.309 / Virus Database: 170 - Release Date: 12/17/2001 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Login-Time problem
yah .. it works! thanks a lot to aleksander and to mitry...
i also wonder what does ':=' do? how does it differ from '=='?
also, is it possible for 'Login-Time' to have two or more
time span in a day, say in Monday 9:00 - 10:00 AM and then
1:00 - 3:00 PM. can it be done?
thanks!
jessie
void signature () {
cout << "Jessie Natividad-- [EMAIL PROTECTED]" << endl ;
cout << "Cell: +63 919 272 7925" << endl;
cout << "Primum Regnum Dei" << endl;
}
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of Aleksandr
Kuzminsky
Sent: Monday, December 17, 2001 5:45 AM
To: [EMAIL PROTECTED]
Subject: Re: Login-Time problem
On Sat, 15 Dec 2001, power jessie wrote:
> Date: Sat, 15 Dec 2001 15:25:41 -0800
> From: power jessie <[EMAIL PROTECTED]>
> Reply-To: [EMAIL PROTECTED]
> To: [EMAIL PROTECTED]
> Subject: Login-Time problem
>
>
>
> Version : FreeRADIUS 0.4
> Platform : FreeBSD 4.3 Release
>
> I can't seem to make Login-Time to work for me, everytime
> i add a Login-Time attribute to either user or group
> in the mysql table, it always reject the request...
> but if i remove the Login-Time attribute, it authenticate
> successfuly.
>
> What am i lacking here? any leads pls ...
I do as Randy Moore adviced (see Simultaneous-Use in SQL table?),
e.g. patch sql.conf and modify sql-scheme.
Then Login-Time attribute put to radgroupcheck table
| GroupName | Attribute | Value | op |
| mygroup | Login-Time | al0900-1800 | := |
In usergroup point that ingoth belong to "mygroup"
| UserName | GroupName |
| ingoth | mygroup |
And it seems work.
But I have not clear understanding what mean := in op field.
---
Aleksandr Kuzminsky,AK476-RIPE
System Administrator, AK16-UANIC
ISP NBI.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
---
This incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001
---
This mail is certified Virus Free. No need to worry.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Login-Time problem
Version : FreeRADIUS 0.4 Platform : FreeBSD 4.3 Release I can't seem to make Login-Time to work for me, everytime i add a Login-Time attribute to either user or group in the mysql table, it always reject the request... but if i remove the Login-Time attribute, it authenticate successfuly. What am i lacking here? any leads pls ... Thanks In Advance! feliz navidad! jessie here's the ouput from radtest : eagle # radtest jessie test localhost 0 testing123 Sending Access-Request of id 44 to 127.0.0.1:1812 User-Name = "jessie" Password = "\025\004\331\036\223dp*\0060|\005u\021/\252" NAS-IP-Address = eagle.power.com.ph NAS-Port-Id = "0" rad_recv: Access-Reject packet from host 127.0.0.1:1812, id=44, length=20 and the output from radiusd -A -X rlm_sql: Released sql socket id: 4 rlm_sql: Pairs do not match [jessie] modcall[authorize]: module "sql" returns notfound modcall: group authorize returns ok auth: No Auth-Type configuration for the request, rejecting the user auth: Failed to validate the user. Login incorrect: [jessie/test] (from nas local port 0) Sending Access-Reject of id 44 to 127.0.0.1:1119 Finished request 3 Going to the next request --- Walking the entire request list --- Waking up in 6 seconds... --- Walking the entire request list --- Cleaning up request 3 ID 44 with timestamp 3c1b6695 Nothing to do. Sleeping until we see a request. --- This mail is certified Virus Free. No need to worry. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
