How to setup redundancy against password failure not just users (authorize/authenticate)?
Hi, I need to setup failover with unix and ldap systems. In a failover document from freeradius, it seems easy to setup failover for authorize section but no way to specify failover for authenticate section. Once an authorize type is selected it seems that only single authentication can be done. We have a requirement where If the password fails against one database, we would like to check against other. Is there any configuration that I can setup to achieve this?. If not can somebody provide me some pointers to modify freeradius source code. I would really appreciate any advice/suggestion in this regard. Thank You! Laxman Gajbhe
Re: How to setup redundancy against password failure not just users (authorize/authenticate)?
On Mon, 22 Nov 2004, Laxman Gajbhe wrote: Hi, I need to setup failover with unix and ldap systems. In a failover document from freeradius, it seems easy to setup failover for authorize section but no way to specify failover for authenticate section. Once an authorize type is selected it seems that only single authentication can be done. We have a requirement where If the password fails against one database, we would like to check against other. Is there any configuration that I can setup to achieve this?. If not can somebody provide me some pointers to modify freeradius source code. I would really appreciate any advice/suggestion in this regard. I think this should work: authenticate{ Auth-Type Something{ <-- the auth-type you 've configured redundant{ ldap unix } } } Thank You! Laxman Gajbhe -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: How to setup redundancy against password failure not just users (authorize/authenticate)?
I tried this: Auth-Type LDAP { redundant { ldap unix } } Server does not seem to like redundant keyword in authenticate section. Any other ideas -Original Message- From: Kostas Kalevras [mailto:[EMAIL PROTECTED] Sent: Monday, November 22, 2004 5:48 PM To: [EMAIL PROTECTED] Subject: Re: How to setup redundancy against password failure not just users (authorize/authenticate)? On Mon, 22 Nov 2004, Laxman Gajbhe wrote: > Hi, > >I need to setup failover with unix and ldap systems. > >In a failover document from freeradius, it seems easy to setup > failover for authorize section but no way to specify failover for > authenticate section. Once an authorize type is selected it seems that > only single authentication can be done. > >We have a requirement where If the password fails against one > database, we would like to check against other. > >Is there any configuration that I can setup to achieve this?. > >If not can somebody provide me some pointers to modify freeradius > source code. > > >I would really appreciate any advice/suggestion in this regard. I think this should work: authenticate{ Auth-Type Something{ <-- the auth-type you 've configured redundant{ ldap unix } } } > > >Thank You! > > Laxman Gajbhe > -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html