(RADIATOR) Radiator and PIX
Hi. Has anyone setupa Cisco PIX to authenticate with Radiator? Do you know if it is possible to pass back firewall settings (ACLs)? Also configuring a PIX to allow for VPNs and authenticate with Radiator. If anyone has any sample of either PIX or Radiator, it would be appreciated. Regards, Shane
(RADIATOR) Current Logged in Users
Does anyone know any simple way of seeing who is logged on, using the logs from Radiator? We do receive start and stops from our gear. We are running ver 2.19 on a NT Server. Any help would be appreciated. Regards, Shane
(RADIATOR) Logging
I am looking to have all Successful attempts logged. Current we have trace 3 and we only get unsuccessful attempts logged. Could some one advised how we can log the successful attempts. Regards, Shane
(RADIATOR) Rewrite Username
I have a need for some of our users to rewrite the username for Authentication purposes. The user name used needs to have certain reply data, while there is only one actual user with the one Password. What is the correct command for this and does this go in my user file or radiator config file? If anyone can help, it would be appreciated. Regards, Shane
Re: (RADIATOR) Rewrite Username
Basically, someone would logon with username-site and in our user file we would have reply data setup for that user. But for the authentication side of things, we need to rewrite the user to just username. If your able to help, it would be appreciated. Regards, Shane - Original Message - From: Hugh Irvine [EMAIL PROTECTED] To: Shane Malden [EMAIL PROTECTED]; Shane Malden [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, January 31, 2002 11:07 AM Subject: Re: (RADIATOR) Rewrite Username Hello Shane - You would use a RewriteUsername parameter. It is not clear to me how you are going to decide what set of reply attributes to use - can you clarify? regards Hugh On Thu, 31 Jan 2002 10:26, Shane Malden wrote: I have a need for some of our users to rewrite the username for Authentication purposes. The user name used needs to have certain reply data, while there is only one actual user with the one Password. What is the correct command for this and does this go in my user file or radiator config file? If anyone can help, it would be appreciated. Regards, Shane -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Syslog - Logging
I am just wondering if anyone knows the correct format of how to have Syslog log all user authentication attempts. Also, currently we have our Trace set to 3 and don't see any Successful authentications. If anyone can help, it would be appreciated. Regards, Shane
Re: (RADIATOR) syslog
Is this possible on NT and with Radiator 2.19?? Regards, Shane - Original Message - From: Hugh Irvine [EMAIL PROTECTED] To: alexus [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Thursday, January 17, 2002 10:11 AM Subject: Re: (RADIATOR) syslog Hello Alexus - You would use the AuthLog SYSLOG clause. Have a look at section 6.50 in the Radiator 2.19 reference manual (doc/ref.html). regards Hugh On Thu, 17 Jan 2002 07:45, alexus wrote: how can i make radius to log into syslogd if user was or wasn't able to login into radius? === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Framed-MTU
I am trying to assign a reply with Framed-MTU=1500 in it. When i start Radiator i get told the command is an invalid keyword. Where abouts do i place this reply?? Any help would be appreciated. Regards, Shane _ MSN Photos is the easiest way to share and print your photos: http://photos.msn.com/support/worldwide.aspx === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Log to SQL
We have Radiator authenticating users from SecurID and all works fine. Currently we have a basic Log file which we would like to change and have logged into SQL. If someone could advise on how to do this, it would be appreciated. Regards, Shane
Re: (RADIATOR) Assign Addresses by Pool
I will be using Radiator to reply with an Address from a Pool. DHCP would be my best option, but the IP pool would be 192.168.1.1 - .254. If you are able to help, it would be appreciated. Regards, Shane - Original Message - From: Hugh Irvine [EMAIL PROTECTED] To: Shane Malden [EMAIL PROTECTED]; Shane Malden [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Tuesday, November 20, 2001 6:04 PM Subject: Re: (RADIATOR) Assign Addresses by Pool Hello Shane - Do you want Radiator to manage this pool? Or do you want the NAS to manage the pool? If it is Radiator, you can either use the FramedGroup construct (assuming simple NAS-Port numbers) or you can use an AuthBy DYNADDRESS with either an SQL address pool or a DHCP address pool. I'm happy to help as always. regards Hugh On Tuesday 20 November 2001 15:31, Shane Malden wrote: I would like to assign a NAS IP addresses from a Pool (192.168.0.x /24). I am authenticating by file. If any one can help, it would be appreciated. Regards, Shane Content-Type: text/html; charset=iso-8859-1; name=Attachment: 1 Content-Transfer-Encoding: quoted-printable Content-Description: -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.
(RADIATOR) Assign Addresses by Pool
I would like to assign a NAS IP addresses from a Pool (192.168.0.x /24). I am authenticating by file.If any one can help, it would be appreciated. Regards, Shane
(RADIATOR) User Groups
I am looking for some support on configuring users in groups. We have several NAS in different locations. All come back to the one Radius Server for authentication. What i would like to do is add users to a group under Radiator and issue this group addresses, based on the location of the NAS. The next issue is these users are authenticated by RSA ACE/Server (SecurID). How would i add these to groups?? If anyone is able to help in any way, it would be appreciated. Regards, Shane
Re: (RADIATOR) User Groups
Hugh, Yes it will, but what I really need to do is assign different sites a different class of addresses (eg, 10.0.0.x /24 for one site, 10.0.1.x for another, etc). Theses all get passed through the one NAS (Telstra) but Data points go through different Routers. One of our selection criteria for a Radius Product was to be able to do this. If you are able to help in some way, it would be appreciated. Regards, Shane - Original Message - From: Hugh Irvine [EMAIL PROTECTED] To: Shane Malden [EMAIL PROTECTED]; Shane Malden [EMAIL PROTECTED]; [EMAIL PROTECTED] Sent: Monday, November 19, 2001 3:55 PM Subject: Re: (RADIATOR) User Groups Hello Shane - On Monday 19 November 2001 13:04, Shane Malden wrote: I am looking for some support on configuring users in groups. We have several NAS in different locations. All come back to the one Radius Server for authentication. What i would like to do is add users to a group under Radiator and issue this group addresses, based on the location of the NAS. The next issue is these users are authenticated by RSA ACE/Server (SecurID). How would i add these to groups?? If anyone is able to help in any way, it would be appreciated. Radiator itself has no notion of groups, but it sounds like you want to do address allocation based on NAS. In a previous reply to you I indicated how to do this using the Identifier tag in the Client clauses - will this not work for you? If it won't work for you, can you tell me what the groups you refer to above are based on? regards Hugh -- Radiator: the most portable, flexible and configurable RADIUS server anywhere. Available on *NIX, *BSD, Windows 95/98/2000, NT, MacOS X. - Nets: internetwork inventory and management - graphical, extensible, flexible with hardware, software, platform and database independence. === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.