(RADIATOR) Re: AuthByPolicy and INFO messages
On Tue, 12 Mar 2002, Hugh Irvine wrote: AuthByPolicy ContinueWhileReject AuthBy SQL ... /AuthBy SQL AuthBy FILE ... /AuthBy It is probably easiest to do what you suggest below and reverse the order of the AuthBy clauses. Keep in mind that the AuthBy FILE caches the file contents in memory at startup time, and you are only talking about a couple of memory lookups, so performance will not be impacted at all. Okay, changing the order fixes the incorrect info messages (user unknown instead of wrong password) for all users in the SQL database, but now I still get a user unknown for the three users in the FILE, when a wrong password is used. I still need some trick to differentiate between a) User exists, but wrong password b) User does not exist in this AuthBy section In case a) I'd like to get Reject while case b) should return Ignore, so AuthByPolicy ContinueWhileIgnore would do the trick. I tried DEFAULT Auth-Type=Ignore in the users file, but this doesn't help, because Radiator also asks for the DEFAULT entry, when the user is found, but with a wrong password. Tscho Roland === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Re: AuthByPolicy and INFO messages
On Tue, 12 Mar 2002, I wrote: I still need some trick to differentiate between a) User exists, but wrong password b) User does not exist in this AuthBy section In case a) I'd like to get Reject while case b) should return Ignore, so AuthByPolicy ContinueWhileIgnore would do the trick. I tried DEFAULT Auth-Type=Ignore in the users file, but this doesn't help, because Radiator also asks for the DEFAULT entry, when the user is found, but with a wrong password. I tried it two hours before posting my previous mail and just in the moment, when I sent it out, I got the inspiration how to solve my problem. Maybe my solution may help others: AuthByPolicy ContinueWhileIgnore AuthBy FILE NoDefaultIfFound Filename /usr/local/radiator/raddb/users /AuthBy AuthBy SQL NoDefault ... /AuthBy SQL With the line DEFAULT Auth-Type = Ignore at the bottom of the users file. The trick here is, that if the user exists in the users file but with a wrong password, the NoDefaultIfFound does not try the DEFAULT and the complete authentication exists with a Reject. If the user isn't found in the FILE, the FILE section searches for a DEFAULT user, which does an Ignore, which implies that the SQL section is used. Now everything seems to work as I expected. Tscho Roland === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) AcctSQLStatement in v.2.19
-- Forwarded Message -- Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from [Quintin [EMAIL PROTECTED]] Date: Tue, 12 Mar 2002 04:13:33 -0600 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] From [EMAIL PROTECTED] Tue Mar 12 04:13:33 2002 Received: from ctmsun4.macau.ctm.net (ctmsun4.macau.ctm.net [202.175.36.44]) by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g2CADW306841 for [EMAIL PROTECTED]; Tue, 12 Mar 2002 04:13:32 -0600 Received: from C2035 (quintin.office.ctm.net [202.175.4.50]) by ctmsun4.macau.ctm.net (8.12.2/8.12.2) with SMTP id g2CBj1Rb014504 for [EMAIL PROTECTED]; Tue, 12 Mar 2002 19:45:01 +0800 (CST) Message-ID: 151f01c1c9bc$a8d80ad0$cc65010a@C2035 From: Quintin [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: AcctSQLStatement in v.2.19 Date: Tue, 12 Mar 2002 19:54:26 +0800 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary==_NextPart_000_151C_01C1C9FF.B6E46770 X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600. X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600. This is a multi-part message in MIME format. --=_NextPart_000_151C_01C1C9FF.B6E46770 Content-Type: text/plain; charset=big5 Content-Transfer-Encoding: quoted-printable Dear Hughes, Actually, I like to insert some information into the database when my = customer login. The following config is from Hughes long time ago and it = is still working in 2.18.2 . However, if the same config running in = 2.19, it rejects and will show Authentication disabled in the log = file. Could you please help?? AuthBy SQL Identifier debitinfo DBSourceDBI:mysql:ewallet:192.168.1.239:3306 DBUsername radius DBAuth radius FailureBackoffTime 60 AccountingStartsOnly AuthSelect AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U' AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, = NASPORT, \ TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N', = \ 0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000) /AuthBy Handler RewriteUsername s/^([^@]+).*/$1/ SessionDatabase MarkStart MaxSessions 1 AuthBy GROUP AuthByPolicy ContinueUntilReject AuthBy GROUP AuthByPolicy ContinueWhileAccept AuthBy debitinfo AuthBy authen-ewallet AuthBy debitwhenauth-ewallet /AuthBy /AuthBy AuthLog authlog AcctLogFileName /var/adm/radacct/%C/detail /Handler Thanks! Quintin --=_NextPart_000_151C_01C1C9FF.B6E46770 Content-Type: text/html; charset=big5 Content-Transfer-Encoding: quoted-printable !DOCTYPE HTML PUBLIC -//W3C//DTD HTML 4.0 Transitional//EN HTMLHEAD META http-equiv=3DContent-Type content=3Dtext/html; charset=3Dbig5 META content=3DMSHTML 6.00.2712.300 name=3DGENERATOR STYLE/STYLE /HEAD BODY bgColor=3D#ff DIVFONT face=3DMingLiu size=3D2Dear Hughes,/FONT/DIV DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2Actually, I like to insert = some information into the=20 database when my customer login. The following config is from Hughes = long time=20 ago and itnbsp;is stillnbsp;working in 2.18.2 . However, if the same = config=20 running in 2.19, it rejects and will show Authentication disabled in = the log=20 file. Could you please help??/FONT/DIV DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2lt;AuthBy = SQLgt;BRnbsp;nbsp;nbsp; Identifier=20 debitinfoBRnbsp;nbsp;nbsp; DBSourcenbsp;nbsp;nbsp;=20 DBI:mysql:ewallet:192.168.1.239:3306BRnbsp;nbsp;nbsp; DBUsername=20 radiusBRnbsp;nbsp;nbsp;=20 DBAuthnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;radiusBRnbsp;nbsp;nbsp;=20 FailureBackoffTime 60BRnbsp;nbsp;nbsp;=20 AccountingStartsOnlyBRnbsp;nbsp;nbsp; AuthSelect/FONT/DIV DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2nbsp;nbsp;nbsp; = AcctSQLStatement delete from=20 DEBITINFO where USERNAME=3D'%U'BRnbsp;nbsp;nbsp; AcctSQLStatement = insert into=20 DEBITINFO (USERNAME, NASIDENTIFIER, NASPORT,=20 \BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; TIME_STAMP,=20 DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N',=20 \BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; 0%{NAS-Port},=20 %{Timestamp}, %{Timestamp}, 1000)BRlt;/AuthBygt;/FONT/DIV DIVFONT face=3D=B2=D3=A9=FA=C5=E9 size=3D2/FONTnbsp;/DIV DIVFONT face=3DMingLiu=20 size=3D2lt;Handlergt;BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;=20 RewriteUsernamenbsp;nbsp;nbsp;nbsp;=20 s/^([^@]+).*/$1/BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; = SessionDatabase=20 MarkStartBRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; MaxSessions=20 1BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; lt;AuthBy=20 GROUPgt;BRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp; = AuthByPolicy=20 ContinueUntilRejectBRnbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;nbsp;n= bsp;nbsp;=20
(RADIATOR) Reading Reply-Message value from a PostAuthHook
Hi, I'm trying to read the reply-message from a PostAuthHook to log any errors on SQL. I have turn on the RejectHasReason in my handler and using the following script: my $rp = ${$_[1]}; my $ReplyMessage = $rp-get_attr('Reply-Message'); What am I doing wrong? Thanks Regards, Alan _ YMCAMAIL YOUR MAIL COMING SOON --- _ Run a small business? Then you need professional email like [EMAIL PROTECTED] from Everyone.net http://www.everyone.net?tag === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) OT: Perl
I know this is a little off topic, but there's also people here that know alot about Perl so this is why I'm asking this question. So let me appologize now, sorry. When I installed Perl, I just installed the minimum, no isapi support. Now I need the isapi support, can I just reinstall Perl over itself? Would that mess anything up? David
Re: (RADIATOR) OT: Perl
Hello David - What I usually do is install the new version of Perl in a separate version-specific directory and run the new version from its own directory for testing. regards Hugh On Wed, 13 Mar 2002 09:11, David Hayes-Moats wrote: I know this is a little off topic, but there's also people here that know alot about Perl so this is why I'm asking this question. So let me appologize now, sorry. When I installed Perl, I just installed the minimum, no isapi support. Now I need the isapi support, can I just reinstall Perl over itself? Would that mess anything up? David -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) AcctSQLStatement in v.2.19
Hello Quintin - Dear Hughes, Actually, I like to insert some information into the database when my = customer login. The following config is from Hughes long time ago and it = is still working in 2.18.2 . However, if the same config running in = 2.19, it rejects and will show Authentication disabled in the log = file. Could you please help?? AuthBy SQL Identifier debitinfo DBSourceDBI:mysql:ewallet:192.168.1.239:3306 DBUsername radius DBAuth radius FailureBackoffTime 60 AccountingStartsOnly AuthSelect AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U' AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, = NASPORT, \ TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N', = \ 0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000) /AuthBy Handler RewriteUsername s/^([^@]+).*/$1/ SessionDatabase MarkStart MaxSessions 1 AuthBy GROUP AuthByPolicy ContinueUntilReject AuthBy GROUP AuthByPolicy ContinueWhileAccept AuthBy debitinfo AuthBy authen-ewallet AuthBy debitwhenauth-ewallet /AuthBy /AuthBy AuthLog authlog AcctLogFileName /var/adm/radacct/%C/detail /Handler I don't quite understand what your Handler is meant to do. The AuthBy SQL with Identifier debitinfo has authentication turned off with the empty AuthSelect, so it will reject any authentication requests. Your AuthByPolicy is set to ContinueWhileAccept, so it will always fail authentication. And why do you have two AuthBy GROUP's? Perhaps if you describe your requirements in some detail, I will be able to make some suggestions. regards Hugh -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) Reading Reply-Message value from a PostAuthHook
Hello Alan - What does a trace 4 debug show? And what does $ReplyMessage give you? regards Hugh On Wed, 13 Mar 2002 00:01, Alan Attard wrote: Hi, I'm trying to read the reply-message from a PostAuthHook to log any errors on SQL. I have turn on the RejectHasReason in my handler and using the following script: my $rp = ${$_[1]}; my $ReplyMessage = $rp-get_attr('Reply-Message'); What am I doing wrong? Thanks Regards, Alan _ YMCAMAIL YOUR MAIL COMING SOON --- _ Run a small business? Then you need professional email like [EMAIL PROTECTED] from Everyone.net http://www.everyone.net?tag === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Radar beta test
Hello all, Thanks to all the Radar beta testers who applied. We have selected a number testers, and applications are now closed. We will be posting further details about the final commercial release of Radar shortly. Cheers. -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) AcctSQLStatement in v.2.19
-- Forwarded Message -- Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from [Quintin [EMAIL PROTECTED]] Date: Tue, 12 Mar 2002 17:48:30 -0600 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] From [EMAIL PROTECTED] Tue Mar 12 17:48:30 2002 Received: from ctmsun4.macau.ctm.net (ctmsun4.macau.ctm.net [202.175.36.44]) by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g2CNmS308583; Tue, 12 Mar 2002 17:48:29 -0600 Received: from C2035 (quintin.office.ctm.net [202.175.4.50]) by ctmsun4.macau.ctm.net (8.12.2/8.12.2) with SMTP id g2D1JsRb021759; Wed, 13 Mar 2002 09:19:54 +0800 (CST) Message-ID: 156e01c1ca2e$8077b640$cc65010a@C2035 From: Quintin [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED] References: [EMAIL PROTECTED] [EMAIL PROTECTED] Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19 Date: Wed, 13 Mar 2002 09:29:21 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600. X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600. Dear Hugh, Thanks for ur quick response. Actually, I just want to add some information into another table (it's not required to authenticate here) after the SessionDatabase and before any LDAP/UNIX authentication. I have tried many configuration even with two Auth Groups, do you have any ideas? Thanks Rgds, Quintin - Original Message - From: Hugh Irvine [EMAIL PROTECTED] To: Quintin [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, March 13, 2002 7:28 AM Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19 Hello Quintin - Dear Hughes, Actually, I like to insert some information into the database when my = customer login. The following config is from Hughes long time ago and it = is still working in 2.18.2 . However, if the same config running in = 2.19, it rejects and will show Authentication disabled in the log = file. Could you please help?? AuthBy SQL Identifier debitinfo DBSourceDBI:mysql:ewallet:192.168.1.239:3306 DBUsername radius DBAuth radius FailureBackoffTime 60 AccountingStartsOnly AuthSelect AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U' AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, = NASPORT, \ TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N', = \ 0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000) /AuthBy Handler RewriteUsername s/^([^@]+).*/$1/ SessionDatabase MarkStart MaxSessions 1 AuthBy GROUP AuthByPolicy ContinueUntilReject AuthBy GROUP AuthByPolicy ContinueWhileAccept AuthBy debitinfo AuthBy authen-ewallet AuthBy debitwhenauth-ewallet /AuthBy /AuthBy AuthLog authlog AcctLogFileName /var/adm/radacct/%C/detail /Handler I don't quite understand what your Handler is meant to do. The AuthBy SQL with Identifier debitinfo has authentication turned off with the empty AuthSelect, so it will reject any authentication requests. Your AuthByPolicy is set to ContinueWhileAccept, so it will always fail authentication. And why do you have two AuthBy GROUP's? Perhaps if you describe your requirements in some detail, I will be able to make some suggestions. regards Hugh -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. --- -- Mike McCauley [EMAIL PROTECTED] Open System Consultants Pty. LtdUnix, Perl, Motif, C++, WWW 24 Bateman St Hampton, VIC 3188 Australia http://www.open.com.au Phone +61 3 9598-0985 Fax +61 3 9598-0955 Radiator: the most portable, flexible and configurable RADIUS server anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, Platypus, Freeside, TACACS+, PAM, external, Active Directory etc etc on Unix, Win95/8, 2000, NT, MacOS 9, MacOS X === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
Re: (RADIATOR) AcctSQLStatement in v.2.19
Hi Mike. Here is a working example for you. AuthBy SQL Identifier AcctStartOnlyLight DBSource DBUsername DBAuth IgnoreAuthentication AccountingStartsOnly AcctSQLStatement UPDATE users SET LOCKED_TO_PVC=%{NAS-Real-Port} \ WHERE username='%n' and ACTIV = 'Enabled' /AuthBy AuthBy SQL Identifier Auth DBSource DBUsername DBAuth AuthSelect select PASSWORD,CHECKATTR,LOCKED_TO_PVC,REPLYATTR,RATE,BURST from users \ where USERNAME ='%n' and ACTIV = 'Enabled' AuthColumnDef 0, User-Password, check AuthColumnDef 1, GENERIC, check AuthColumnDef 2, RB-NAS-Real-Port, check AuthColumnDef 3, GENERIC, reply AuthColumnDef 4, RB-Rate-Limit-Rate, reply AuthColumnDef 5, RB-Rate-Limit-Burst, reply DefaultSimultaneousUse 1 NoDefault RejectEmptyPassword AddToReplyIfNotExist Rate-Limit-Rate=100,Rate-Limit-Burst=1 AccountingTable log AcctColumnDef USERNAME,User-Name AcctColumnDef DATE,Timestamp,formatted-date,'%Y-%m-%d' AcctColumnDef TIME,Timestamp,formatted-date,'%H:%M:%S' AcctColumnDef TYPE,Acct-Status-Type AcctColumnDef FRAMED_IP,Framed-IP-Address AcctColumnDef IN_OCTETS,Acct-Input-Octets,integer AcctColumnDef OUT_OCTETS,Acct-Output-Octets,integer AcctColumnDef SESSION_ID,Acct-Session-Id AcctColumnDef RATE,Rate-Limit-Rate AcctColumnDef BURST,Rate-Limit-Burst AcctColumnDef DURATION,Acct-Session-Time,integer AcctColumnDef BRAS,NAS-Identifier AcctColumnDef VPI_VCI,NAS-Real-Port AcctFailedLogFileName %L/SQLacct-failed-mudapingviin-%Y-%m-%d /AuthBy Rgds. Toomas Kärner - Original Message - From: Mike McCauley [EMAIL PROTECTED] To: [EMAIL PROTECTED] Sent: Wednesday, March 13, 2002 4:24 AM Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19 -- Forwarded Message -- Subject: BOUNCE [EMAIL PROTECTED]:Non-member submission from [Quintin [EMAIL PROTECTED]] Date: Tue, 12 Mar 2002 17:48:30 -0600 From: [EMAIL PROTECTED] To: [EMAIL PROTECTED] From [EMAIL PROTECTED] Tue Mar 12 17:48:30 2002 Received: from ctmsun4.macau.ctm.net (ctmsun4.macau.ctm.net [202.175.36.44]) by server1.open.com.au (8.11.0/8.11.0) with ESMTP id g2CNmS308583; Tue, 12 Mar 2002 17:48:29 -0600 Received: from C2035 (quintin.office.ctm.net [202.175.4.50]) by ctmsun4.macau.ctm.net (8.12.2/8.12.2) with SMTP id g2D1JsRb021759; Wed, 13 Mar 2002 09:19:54 +0800 (CST) Message-ID: 156e01c1ca2e$8077b640$cc65010a@C2035 From: Quintin [EMAIL PROTECTED] To: [EMAIL PROTECTED], [EMAIL PROTECTED] References: [EMAIL PROTECTED] [EMAIL PROTECTED] Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19 Date: Wed, 13 Mar 2002 09:29:21 +0800 MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600. X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2600. Dear Hugh, Thanks for ur quick response. Actually, I just want to add some information into another table (it's not required to authenticate here) after the SessionDatabase and before any LDAP/UNIX authentication. I have tried many configuration even with two Auth Groups, do you have any ideas? Thanks Rgds, Quintin - Original Message - From: Hugh Irvine [EMAIL PROTECTED] To: Quintin [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Wednesday, March 13, 2002 7:28 AM Subject: Re: (RADIATOR) AcctSQLStatement in v.2.19 Hello Quintin - Dear Hughes, Actually, I like to insert some information into the database when my = customer login. The following config is from Hughes long time ago and it = is still working in 2.18.2 . However, if the same config running in = 2.19, it rejects and will show Authentication disabled in the log = file. Could you please help?? AuthBy SQL Identifier debitinfo DBSourceDBI:mysql:ewallet:192.168.1.239:3306 DBUsername radius DBAuth radius FailureBackoffTime 60 AccountingStartsOnly AuthSelect AcctSQLStatement delete from DEBITINFO where USERNAME=3D'%U' AcctSQLStatement insert into DEBITINFO (USERNAME, NASIDENTIFIER, = NASPORT, \ TIME_STAMP, DEBIT_TIMESTAMP, DEBIT_AMOUNT) values ('%U', '%N', = \ 0%{NAS-Port}, %{Timestamp}, %{Timestamp}, 1000) /AuthBy Handler RewriteUsername s/^([^@]+).*/$1/ SessionDatabase MarkStart MaxSessions 1 AuthBy GROUP AuthByPolicy ContinueUntilReject AuthBy GROUP AuthByPolicy ContinueWhileAccept AuthBy debitinfo AuthBy authen-ewallet AuthBy debitwhenauth-ewallet /AuthBy /AuthBy AuthLog authlog AcctLogFileName /var/adm/radacct/%C/detail /Handler I don't quite understand what your Handler is meant to do. The AuthBy SQL with Identifier debitinfo has authentication turned off with the empty