Expiration, Counter and Reset Value
Are there any ways I can do these in freeradius (0.4)? 1. 'Expiration' will be set based on firt login date. i.e. an account will expired 90 days after first usage. Expiration = FirstLoginDate + 90 Days 2. User-defined reset value in the counter module. i.e. reset = 14 # counter will reset to zero after 14 days reset = 60 # resets after two months Also, can i have another the same counter module but with a different reset value? i.e. counter { ... reset = daily ... } counter2 { ... reset = monthly ... } Hope you'll be more patient to my newbie questions =) Thanks again guys for your support! yo! jessie Feliz Navidad! --- Don't Panic! This mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.309 / Virus Database: 170 - Release Date: 12/17/2001 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Monthly-Time-Limit and Total-Time-Limit
Thank you very much Sir Alan! you rock :) I've successfuly configured freeradius 0.4 in my freebsd box, and it seems to be working very well now. i have a cisco nas configured too and the aaa via the mysql module. My problem now is that I want to implement ICradius' 'Monthly-Time-Limit' and 'Total-Time-Limit' attributes but there seems to be no support yet to these in freeradius. Am I right or is it supported already? If not, is there a way I can do this in freeradius? Any suggestions? Thanks again! jessie Feliz Navidad! -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of [EMAIL PROTECTED] Sent: Monday, December 17, 2001 8:07 AM To: [EMAIL PROTECTED] Subject: Re: Login-Time problem "power jessie" <[EMAIL PROTECTED]> wrote: > i also wonder what does ':=' do? how does it differ from '=='? 'man users' > also, is it possible for 'Login-Time' to have two or more > time span in a day, say in Monday 9:00 - 10:00 AM and then > 1:00 - 3:00 PM. can it be done? Yes. See the documentation that comes with the server. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html --- This incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001 --- Don't Panic! This mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.309 / Virus Database: 170 - Release Date: 12/17/2001 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: Login-Time problem
yah .. it works! thanks a lot to aleksander and to mitry... i also wonder what does ':=' do? how does it differ from '=='? also, is it possible for 'Login-Time' to have two or more time span in a day, say in Monday 9:00 - 10:00 AM and then 1:00 - 3:00 PM. can it be done? thanks! jessie void signature () { cout << "Jessie Natividad-- [EMAIL PROTECTED]" << endl ; cout << "Cell: +63 919 272 7925" << endl; cout << "Primum Regnum Dei" << endl; } -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Aleksandr Kuzminsky Sent: Monday, December 17, 2001 5:45 AM To: [EMAIL PROTECTED] Subject: Re: Login-Time problem On Sat, 15 Dec 2001, power jessie wrote: > Date: Sat, 15 Dec 2001 15:25:41 -0800 > From: power jessie <[EMAIL PROTECTED]> > Reply-To: [EMAIL PROTECTED] > To: [EMAIL PROTECTED] > Subject: Login-Time problem > > > > Version : FreeRADIUS 0.4 > Platform : FreeBSD 4.3 Release > > I can't seem to make Login-Time to work for me, everytime > i add a Login-Time attribute to either user or group > in the mysql table, it always reject the request... > but if i remove the Login-Time attribute, it authenticate > successfuly. > > What am i lacking here? any leads pls ... I do as Randy Moore adviced (see Simultaneous-Use in SQL table?), e.g. patch sql.conf and modify sql-scheme. Then Login-Time attribute put to radgroupcheck table | GroupName | Attribute | Value | op | | mygroup | Login-Time | al0900-1800 | := | In usergroup point that ingoth belong to "mygroup" | UserName | GroupName | | ingoth | mygroup | And it seems work. But I have not clear understanding what mean := in op field. --- Aleksandr Kuzminsky,AK476-RIPE System Administrator, AK16-UANIC ISP NBI. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html --- This incoming mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001 --- This mail is certified Virus Free. No need to worry. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Login-Time problem
Version : FreeRADIUS 0.4 Platform : FreeBSD 4.3 Release I can't seem to make Login-Time to work for me, everytime i add a Login-Time attribute to either user or group in the mysql table, it always reject the request... but if i remove the Login-Time attribute, it authenticate successfuly. What am i lacking here? any leads pls ... Thanks In Advance! feliz navidad! jessie here's the ouput from radtest : eagle # radtest jessie test localhost 0 testing123 Sending Access-Request of id 44 to 127.0.0.1:1812 User-Name = "jessie" Password = "\025\004\331\036\223dp*\0060|\005u\021/\252" NAS-IP-Address = eagle.power.com.ph NAS-Port-Id = "0" rad_recv: Access-Reject packet from host 127.0.0.1:1812, id=44, length=20 and the output from radiusd -A -X rlm_sql: Released sql socket id: 4 rlm_sql: Pairs do not match [jessie] modcall[authorize]: module "sql" returns notfound modcall: group authorize returns ok auth: No Auth-Type configuration for the request, rejecting the user auth: Failed to validate the user. Login incorrect: [jessie/test] (from nas local port 0) Sending Access-Reject of id 44 to 127.0.0.1:1119 Finished request 3 Going to the next request --- Walking the entire request list --- Waking up in 6 seconds... --- Walking the entire request list --- Cleaning up request 3 ID 44 with timestamp 3c1b6695 Nothing to do. Sleeping until we see a request. --- This mail is certified Virus Free. No need to worry. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.306 / Virus Database: 166 - Release Date: 12/4/2001 - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html