(RADIATOR) Re: AuthByPolicy and INFO messages
On Tue, 12 Mar 2002, Hugh Irvine wrote: AuthByPolicy ContinueWhileReject AuthBy SQL ... /AuthBy SQL AuthBy FILE ... /AuthBy It is probably easiest to do what you suggest below and reverse the order of the AuthBy clauses. Keep in mind that the AuthBy FILE caches the file contents in memory at startup time, and you are only talking about a couple of memory lookups, so performance will not be impacted at all. Okay, changing the order fixes the incorrect info messages (user unknown instead of wrong password) for all users in the SQL database, but now I still get a user unknown for the three users in the FILE, when a wrong password is used. I still need some trick to differentiate between a) User exists, but wrong password b) User does not exist in this AuthBy section In case a) I'd like to get Reject while case b) should return Ignore, so AuthByPolicy ContinueWhileIgnore would do the trick. I tried DEFAULT Auth-Type=Ignore in the users file, but this doesn't help, because Radiator also asks for the DEFAULT entry, when the user is found, but with a wrong password. Tscho Roland === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Re: AuthByPolicy and INFO messages
On Tue, 12 Mar 2002, I wrote: I still need some trick to differentiate between a) User exists, but wrong password b) User does not exist in this AuthBy section In case a) I'd like to get Reject while case b) should return Ignore, so AuthByPolicy ContinueWhileIgnore would do the trick. I tried DEFAULT Auth-Type=Ignore in the users file, but this doesn't help, because Radiator also asks for the DEFAULT entry, when the user is found, but with a wrong password. I tried it two hours before posting my previous mail and just in the moment, when I sent it out, I got the inspiration how to solve my problem. Maybe my solution may help others: AuthByPolicy ContinueWhileIgnore AuthBy FILE NoDefaultIfFound Filename /usr/local/radiator/raddb/users /AuthBy AuthBy SQL NoDefault ... /AuthBy SQL With the line DEFAULT Auth-Type = Ignore at the bottom of the users file. The trick here is, that if the user exists in the users file but with a wrong password, the NoDefaultIfFound does not try the DEFAULT and the complete authentication exists with a Reject. If the user isn't found in the FILE, the FILE section searches for a DEFAULT user, which does an Ignore, which implies that the SQL section is used. Now everything seems to work as I expected. Tscho Roland === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) AcctSQLStatement in v.2.19
-- Forwarded Message --
Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from
[Quintin [EMAIL PROTECTED]]
Date: Tue, 12 Mar 2002 04:13:33 -0600
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
From [EMAIL PROTECTED] Tue Mar 12 04:13:33 2002
Received: from ctmsun4.macau.ctm.net (ctmsun4.macau.ctm.net [202.175.36.44])
by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g2CADW306841
for [EMAIL PROTECTED]; Tue, 12 Mar 2002 04:13:32 -0600
Received: from C2035 (quintin.office.ctm.net [202.175.4.50])
by ctmsun4.macau.ctm.net (8.12.2/8.12.2) with SMTP id g2CBj1Rb014504
for [EMAIL PROTECTED]; Tue, 12 Mar 2002 19:45:01 +0800 (CST)
Message-ID: 151f01c1c9bc$a8d80ad0$cc65010a@C2035
From: Quintin [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: AcctSQLStatement in v.2.19
Date: Tue, 12 Mar 2002 19:54:26 +0800
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary==_NextPart_000_151C_01C1C9FF.B6E46770
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.
This is a multi-part message in MIME format.
--=_NextPart_000_151C_01C1C9FF.B6E46770
Content-Type: text/plain;
charset=big5
Content-Transfer-Encoding: quoted-printable
Dear Hughes,
Actually, I like to insert some information into the database when my =
customer login. The following config is from Hughes long time ago and it =
is still working in 2.18.2 . However, if the same config running in =
2.19, it rejects and will show Authentication disabled in the log =
file. Could you please help??
AuthBy SQL
Identifier debitinfo
DBSourceDBI:mysql:ewallet:192.168.1.239:3306
DBUsername radius
DBAuth radius
FailureBackoffTime 60
AccountingStartsOnly
AuthSelect
AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U'
AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, =
NASPORT, \
TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N', =
\
0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000)
/AuthBy
Handler
RewriteUsername s/^([^@]+).*/$1/
SessionDatabase MarkStart
MaxSessions 1
AuthBy GROUP
AuthByPolicy ContinueUntilReject
AuthBy GROUP
AuthByPolicy ContinueWhileAccept
AuthBy debitinfo
AuthBy authen-ewallet
AuthBy debitwhenauth-ewallet
/AuthBy
/AuthBy
AuthLog authlog
AcctLogFileName /var/adm/radacct/%C/detail
/Handler
Thanks!
Quintin
--=_NextPart_000_151C_01C1C9FF.B6E46770
Content-Type: text/html;
charset=big5
Content-Transfer-Encoding: quoted-printable
!DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.0 Transitional//EN
HTMLHEAD
META http-equiv=3DContent-Type content=3Dtext/html; charset=3Dbig5
META content=3DMSHTML 6.00.2712.300 name=3DGENERATOR
STYLE/STYLE
/HEAD
BODY bgColor=3D#ff
DIVFONT face=3DMingLiu size=3D2Dear Hughes,/FONT/DIV
DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV
DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2Actually, I like to insert =
some information into the=20
database when my customer login. The following config is from Hughes =
long time=20
ago and itnbsp;is stillnbsp;working in 2.18.2 . However, if the same =
config=20
running in 2.19, it rejects and will show Authentication disabled in =
the log=20
file. Could you please help??/FONT/DIV
DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV
DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV
DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2lt;AuthBy =
SQLgt;BRnbsp;nbsp;nbsp; Identifier=20
debitinfoBRnbsp;nbsp;nbsp; DBSourcenbsp;nbsp;nbsp;=20
DBI:mysql:ewallet:192.168.1.239:3306BRnbsp;nbsp;nbsp; DBUsername=20
radiusBRnbsp;nbsp;nbsp;=20
DBAuthnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;radiusBRnbsp;nbsp;nbsp;=20
FailureBackoffTime 60BRnbsp;nbsp;nbsp;=20
AccountingStartsOnlyBRnbsp;nbsp;nbsp; AuthSelect/FONT/DIV
DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2nbsp;nbsp;nbsp; =
AcctSQLStatement delete from=20
DEBITINFO where USERNAME=3D'%U'BRnbsp;nbsp;nbsp; AcctSQLStatement =
insert into=20
DEBITINFO (USERNAME, NASIDENTIFIER, NASPORT,=20
\BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; TIME_STAMP,=20
DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N',=20
\BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; 0%{NAS-Port},=20
%{Timestamp}, %{Timestamp}, 1000)BRlt;/AuthBygt;/FONT/DIV
DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV
DIVFONT face=3DMingLiu=20
size=3D2lt;Handlergt;BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;=20
RewriteUsernamenbsp;nbsp;nbsp;nbsp;=20
s/^([^@]+).*/$1/BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; =
SessionDatabase=20
MarkStartBRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; MaxSessions=20
1BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; lt;AuthBy=20
GROUPgt;BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; =
AuthByPolicy=20
ContinueUntilRejectBRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;n=
bsp;nbsp;=20
(RADIATOR) Reading Reply-Message value from a PostAuthHook
Hi,
I'm trying to read the reply-message from a PostAuthHook to log any errors on SQL. I
have turn on the RejectHasReason in my handler and using the following script:
my $rp = ${$_[1]};
my $ReplyMessage = $rp-get_attr('Reply-Message');
What am I doing wrong?
Thanks Regards,
Alan
_
YMCAMAIL YOUR MAIL COMING SOON ---
_
Run a small business? Then you need professional email like [EMAIL PROTECTED] from
Everyone.net http://www.everyone.net?tag
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
(RADIATOR) OT: Perl
I know this is a little off topic, but there's also people here that know alot about Perl so this is why I'm asking this question. So let me appologize now, sorry. When I installed Perl, I just installed the minimum, no isapi support. Now I need the isapi support, can I just reinstall Perl over itself? Would that mess anything up? David
Re: (RADIATOR) OT: Perl
Hello David - What I usually do is install the new version of Perl in a separate version-specific directory and run the new version from its own directory for testing. regards Hugh On Wed, 13 Mar 2002 09:11, David Hayes-Moats wrote: I know this is a little off topic, but there's also people here that know alot about Perl so this is why I'm asking this question. So let me appologize now, sorry. When I installed Perl, I just installed the minimum, no isapi support. Now I need the isapi support, can I just reinstall Perl over itself? Would that mess anything up? David -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) AcctSQLStatement in v.2.19
Hello Quintin -
Dear Hughes,
Actually, I like to insert some information into the database when my =
customer login. The following config is from Hughes long time ago and it =
is still working in 2.18.2 . However, if the same config running in =
2.19, it rejects and will show Authentication disabled in the log =
file. Could you please help??
AuthBy SQL
Identifier debitinfo
DBSourceDBI:mysql:ewallet:192.168.1.239:3306
DBUsername radius
DBAuth radius
FailureBackoffTime 60
AccountingStartsOnly
AuthSelect
AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U'
AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, =
NASPORT, \
TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N', =
\
0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000)
/AuthBy
Handler
RewriteUsername s/^([^@]+).*/$1/
SessionDatabase MarkStart
MaxSessions 1
AuthBy GROUP
AuthByPolicy ContinueUntilReject
AuthBy GROUP
AuthByPolicy ContinueWhileAccept
AuthBy debitinfo
AuthBy authen-ewallet
AuthBy debitwhenauth-ewallet
/AuthBy
/AuthBy
AuthLog authlog
AcctLogFileName /var/adm/radacct/%C/detail
/Handler
I don't quite understand what your Handler is meant to do.
The AuthBy SQL with Identifier debitinfo has authentication turned off with
the empty AuthSelect, so it will reject any authentication requests. Your
AuthByPolicy is set to ContinueWhileAccept, so it will always fail
authentication.
And why do you have two AuthBy GROUP's?
Perhaps if you describe your requirements in some detail, I will be able to
make some suggestions.
regards
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Reading Reply-Message value from a PostAuthHook
Hello Alan -
What does a trace 4 debug show? And what does $ReplyMessage give you?
regards
Hugh
On Wed, 13 Mar 2002 00:01, Alan Attard wrote:
Hi,
I'm trying to read the reply-message from a PostAuthHook to log any errors
on SQL. I have turn on the RejectHasReason in my handler and using the
following script:
my $rp = ${$_[1]};
my $ReplyMessage = $rp-get_attr('Reply-Message');
What am I doing wrong?
Thanks Regards,
Alan
_
YMCAMAIL YOUR MAIL COMING SOON ---
_
Run a small business? Then you need professional email like [EMAIL PROTECTED]
from Everyone.net http://www.everyone.net?tag ===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
(RADIATOR) Radar beta test
Hello all, Thanks to all the Radar beta testers who applied. We have selected a number testers, and applications are now closed. We will be posting further details about the final commercial release of Radar shortly. Cheers. -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) AcctSQLStatement in v.2.19
-- Forwarded Message --
Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from
[Quintin [EMAIL PROTECTED]]
Date: Tue, 12 Mar 2002 17:48:30 -0600
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
From [EMAIL PROTECTED] Tue Mar 12 17:48:30 2002
Received: from ctmsun4.macau.ctm.net (ctmsun4.macau.ctm.net [202.175.36.44])
by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g2CNmS308583;
Tue, 12 Mar 2002 17:48:29 -0600
Received: from C2035 (quintin.office.ctm.net [202.175.4.50])
by ctmsun4.macau.ctm.net (8.12.2/8.12.2) with SMTP id g2D1JsRb021759;
Wed, 13 Mar 2002 09:19:54 +0800 (CST)
Message-ID: 156e01c1ca2e$8077b640$cc65010a@C2035
From: Quintin [EMAIL PROTECTED]
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
References: [EMAIL PROTECTED]
[EMAIL PROTECTED] Subject: Re: (RADIATOR)
AcctSQLStatement in v.2.19
Date: Wed, 13 Mar 2002 09:29:21 +0800
MIME-Version: 1.0
Content-Type: text/plain;
charset=iso-8859-1
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.
Dear Hugh,
Thanks for ur quick response. Actually, I just want to add some information
into another table (it's not required to authenticate here) after the
SessionDatabase and before any LDAP/UNIX authentication.
I have tried many configuration even with two Auth Groups, do you have any
ideas?
Thanks Rgds,
Quintin
- Original Message -
From: Hugh Irvine [EMAIL PROTECTED]
To: Quintin [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Wednesday, March 13, 2002 7:28 AM
Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19
Hello Quintin -
Dear Hughes,
Actually, I like to insert some information into the database when my =
customer login. The following config is from Hughes long time ago and it
=
is still working in 2.18.2 . However, if the same config running in =
2.19, it rejects and will show Authentication disabled in the log =
file. Could you please help??
AuthBy SQL
Identifier debitinfo
DBSourceDBI:mysql:ewallet:192.168.1.239:3306
DBUsername radius
DBAuth radius
FailureBackoffTime 60
AccountingStartsOnly
AuthSelect
AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U'
AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, =
NASPORT, \
TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N',
=
\
0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000)
/AuthBy
Handler
RewriteUsername s/^([^@]+).*/$1/
SessionDatabase MarkStart
MaxSessions 1
AuthBy GROUP
AuthByPolicy ContinueUntilReject
AuthBy GROUP
AuthByPolicy ContinueWhileAccept
AuthBy debitinfo
AuthBy authen-ewallet
AuthBy debitwhenauth-ewallet
/AuthBy
/AuthBy
AuthLog authlog
AcctLogFileName /var/adm/radacct/%C/detail
/Handler
I don't quite understand what your Handler is meant to do.
The AuthBy SQL with Identifier debitinfo has authentication turned off
with
the empty AuthSelect, so it will reject any authentication requests. Your
AuthByPolicy is set to ContinueWhileAccept, so it will always fail
authentication.
And why do you have two AuthBy GROUP's?
Perhaps if you describe your requirements in some detail, I will be able
to
make some suggestions.
regards
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
---
--
Mike McCauley [EMAIL PROTECTED]
Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW
24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au
Phone +61 3 9598-0985 Fax +61 3 9598-0955
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc
on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) AcctSQLStatement in v.2.19
Hi Mike.
Here is a working example for you.
AuthBy SQL
Identifier AcctStartOnlyLight
DBSource
DBUsername
DBAuth
IgnoreAuthentication
AccountingStartsOnly
AcctSQLStatement UPDATE users SET LOCKED_TO_PVC=%{NAS-Real-Port} \
WHERE username='%n' and ACTIV = 'Enabled'
/AuthBy
AuthBy SQL
Identifier Auth
DBSource
DBUsername
DBAuth
AuthSelect select PASSWORD,CHECKATTR,LOCKED_TO_PVC,REPLYATTR,RATE,BURST from
users \
where USERNAME ='%n' and ACTIV = 'Enabled'
AuthColumnDef 0, User-Password, check
AuthColumnDef 1, GENERIC, check
AuthColumnDef 2, RB-NAS-Real-Port, check
AuthColumnDef 3, GENERIC, reply
AuthColumnDef 4, RB-Rate-Limit-Rate, reply
AuthColumnDef 5, RB-Rate-Limit-Burst, reply
DefaultSimultaneousUse 1
NoDefault
RejectEmptyPassword
AddToReplyIfNotExist Rate-Limit-Rate=100,Rate-Limit-Burst=1
AccountingTable log
AcctColumnDef USERNAME,User-Name
AcctColumnDef DATE,Timestamp,formatted-date,'%Y-%m-%d'
AcctColumnDef TIME,Timestamp,formatted-date,'%H:%M:%S'
AcctColumnDef TYPE,Acct-Status-Type
AcctColumnDef FRAMED_IP,Framed-IP-Address
AcctColumnDef IN_OCTETS,Acct-Input-Octets,integer
AcctColumnDef OUT_OCTETS,Acct-Output-Octets,integer
AcctColumnDef SESSION_ID,Acct-Session-Id
AcctColumnDef RATE,Rate-Limit-Rate
AcctColumnDef BURST,Rate-Limit-Burst
AcctColumnDef DURATION,Acct-Session-Time,integer
AcctColumnDef BRAS,NAS-Identifier
AcctColumnDef VPI_VCI,NAS-Real-Port
AcctFailedLogFileName %L/SQLacct-failed-mudapingviin-%Y-%m-%d
/AuthBy
Rgds.
Toomas Kärner
- Original Message -
From: Mike McCauley [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Sent: Wednesday, March 13, 2002 4:24 AM
Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19
-- Forwarded Message --
Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from
[Quintin [EMAIL PROTECTED]]
Date: Tue, 12 Mar 2002 17:48:30 -0600
From: [EMAIL PROTECTED]
To: [EMAIL PROTECTED]
From [EMAIL PROTECTED] Tue Mar 12 17:48:30 2002
Received: from ctmsun4.macau.ctm.net (ctmsun4.macau.ctm.net
[202.175.36.44])
by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g2CNmS308583;
Tue, 12 Mar 2002 17:48:29 -0600
Received: from C2035 (quintin.office.ctm.net [202.175.4.50])
by ctmsun4.macau.ctm.net (8.12.2/8.12.2) with SMTP id g2D1JsRb021759;
Wed, 13 Mar 2002 09:19:54 +0800 (CST)
Message-ID: 156e01c1ca2e$8077b640$cc65010a@C2035
From: Quintin [EMAIL PROTECTED]
To: [EMAIL PROTECTED], [EMAIL PROTECTED]
References: [EMAIL PROTECTED]
[EMAIL PROTECTED] Subject: Re: (RADIATOR)
AcctSQLStatement in v.2.19
Date: Wed, 13 Mar 2002 09:29:21 +0800
MIME-Version: 1.0
Content-Type: text/plain;
charset=iso-8859-1
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2600.
X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600.
Dear Hugh,
Thanks for ur quick response. Actually, I just want to add some
information
into another table (it's not required to authenticate here) after the
SessionDatabase and before any LDAP/UNIX authentication.
I have tried many configuration even with two Auth Groups, do you have
any
ideas?
Thanks Rgds,
Quintin
- Original Message -
From: Hugh Irvine [EMAIL PROTECTED]
To: Quintin [EMAIL PROTECTED]; [EMAIL PROTECTED]
Sent: Wednesday, March 13, 2002 7:28 AM
Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19
Hello Quintin -
Dear Hughes,
Actually, I like to insert some information into the database when my
=
customer login. The following config is from Hughes long time ago and
it
=
is still working in 2.18.2 . However, if the same config running in =
2.19, it rejects and will show Authentication disabled in the log =
file. Could you please help??
AuthBy SQL
Identifier debitinfo
DBSourceDBI:mysql:ewallet:192.168.1.239:3306
DBUsername radius
DBAuth radius
FailureBackoffTime 60
AccountingStartsOnly
AuthSelect
AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U'
AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, =
NASPORT, \
TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U',
'%N',
=
\
0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000)
/AuthBy
Handler
RewriteUsername s/^([^@]+).*/$1/
SessionDatabase MarkStart
MaxSessions 1
AuthBy GROUP
AuthByPolicy ContinueUntilReject
AuthBy GROUP
AuthByPolicy ContinueWhileAccept
AuthBy debitinfo
AuthBy authen-ewallet
AuthBy debitwhenauth-ewallet
/AuthBy
/AuthBy
AuthLog authlog
AcctLogFileName /var/adm/radacct/%C/detail
/Handler
I don't quite understand what your Handler is meant to do.
The AuthBy SQL with Identifier debitinfo has authentication turned off
with
the empty
