RE: How to reply Session-Timeout without password
Hi, Now I am a little confused. For user 005001, I not only want to check the Session-Timeout for accounting, but also want to check its password for authorization. Before you tell me the auth by IP address method, my conf is like this: 005001 Auth-Type := Digest, Password == 005001 Now my question is: How can I make radius server to use Password for normal authorization and then use the auth by IP address method for *b2bua request? -Original Message- From: Stefan Winter [mailto:[EMAIL PROTECTED] Sent: 2006年7月26日 1:03 To: FreeRadius users mailing list Subject: Re: How to reply Session-Timeout without password Hi, My question is how to make the radius server accept the request which do not contain the password and reply the Session-Timeout to the *b2bua? I have not the faintest idea about *b2bua (WTF?) but if you just want to accept everyone without any checks for your *b2bua NASes, you can achieve it in the users file with NAS-IP-Address == your-b2bua-ns, Auth-Type := Accept Session-Timeout := whatever Do keep in mind that everyone who is authenticating via this IP address is *always* *accepted* Greetings, Stefan Winter -- Stefan WINTER Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de la Recherche - Ingénieur de recherche 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: How to reply Session-Timeout without password
Hi! Now I am a little confused. For user 005001, I not only want to check the Session-Timeout for accounting, but also want to check its password for authorization. Before you tell me the auth by IP address method, my conf is like this: 005001 Auth-Type := Digest, Password == 005001 Now my question is: How can I make radius server to use Password for normal authorization and then use the auth by IP address method for *b2bua request? You can use Fall-Through: first the entries with the NAS-IP-Address, but adding a Fall-Through = Yes, and later your other, sepcial, user. Altogether it will look like that: NAS-IP-Address == your-b2bua-ns, Auth-Type := Accept Session-Timeout := whatever, Fall-Through = Yes 005001 Auth-Type := Digest, Password == 005001 All users whose user name is *not* 005001 are caught with the first expression and not with the second. User 005001 is first caught with the first expression, but later overridden with the second one and thus needs to authenticate. Greetings, Stefan Winter -- Stefan WINTER Stiftung RESTENA - Réseau Téléinformatique de l'Education Nationale et de la Recherche Ingenieur Forschung Entwicklung 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg E-Mail: [EMAIL PROTECTED] Tel.: +352 424409-1 http://www.restena.lu Fax: +352 422473 pgp6hZxbPRFC7.pgp Description: PGP signature - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: How to reply Session-Timeout without password
Hi, My question is how to make the radius server accept the request which do not contain the password and reply the Session-Timeout to the *b2bua? I have not the faintest idea about *b2bua (WTF?) but if you just want to accept everyone without any checks for your *b2bua NASes, you can achieve it in the users file with NAS-IP-Address == your-b2bua-ns, Auth-Type := Accept Session-Timeout := whatever Do keep in mind that everyone who is authenticating via this IP address is *always* *accepted* Greetings, Stefan Winter -- Stefan WINTER Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de la Recherche - Ingénieur de recherche 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE: How to reply Session-Timeout without password
Thanks for your reply. I now know how to do it. PS: *b2bua is short for Asterisk+b2bua. It is a prepaid billing solution for VoIP system. -Original Message- From: Stefan Winter [mailto:[EMAIL PROTECTED] Sent: 2006年7月26日 1:03 To: FreeRadius users mailing list Subject: Re: How to reply Session-Timeout without password Hi, My question is how to make the radius server accept the request which do not contain the password and reply the Session-Timeout to the *b2bua? I have not the faintest idea about *b2bua (WTF?) but if you just want to accept everyone without any checks for your *b2bua NASes, you can achieve it in the users file with NAS-IP-Address == your-b2bua-ns, Auth-Type := Accept Session-Timeout := whatever Do keep in mind that everyone who is authenticating via this IP address is *always* *accepted* Greetings, Stefan Winter -- Stefan WINTER Fondation RESTENA - Réseau Téléinformatique de l'Education Nationale et de la Recherche - Ingénieur de recherche 6, rue Richard Coudenhove-Kalergi L-1359 Luxembourg - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html