(RADIATOR) Fwd: BOUNCE radiator@open.com.au: Non-member submission from [David Smith ]

Sat, 06 May 2000 00:01:08 -0700 



From: David Smith <[EMAIL PROTECTED]>
Message-Id: <[EMAIL PROTECTED]>
Subject: auth even if password wrong..
To: [EMAIL PROTECTED]
Date: Fri, 5 May 2000 13:11:53 -0400 (EDT)
X-Mailer: ELM [version 2.5 PL2]
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset=us-ascii

Hi,

I'm doing some work for a client who uses radiator. I've looked
through the docs, faq, but can't seem to find a way to do the
following. Firstly, below is what the existing realm in the config
file looks like.


<Realm foo>
  AcctLogFileName %L/%c/detail
  AcctLogFileName /home/radius/acctlog.%Y%m%d
  AuthByPolicy ContinueAlways
  <AuthBy GROUP>
    AuthByPolicy ContinueUntilAccept
    <AuthBy FILE>
      Filename /home/radius/raddb/users1
    </AuthBy>
    <AuthBy FILE>
      Filename /home/radius/raddb/users2
      AddToReply Service-Type=Framed-User,Framed-Protocol=PPP
    </AuthBy>
    <AuthBy FILE>
      Filename /home/radius/raddb/users3
      Identifier System
      Identifier Realm
      DefaultReply Framed-IP-Address=255.255.255.254
      AddToReply Service-Type=Framed-User,Framed-Protocol=PPP
    </AuthBy>
  </AuthBy>
</Realm>


What I'd like to achieve, is a fallthrough for users that don't
have a username and/or password match in any of the preceeding
password files, such that they will be authenticated anyway...then
I want to use the cisco avpair stuff to ensure they can only get to a
certain web page, which tells them what to do next.

The question is, how do I create another AuthBy statement that will
ensure that they authenticate, if they have failed to authenticate (for
whatever reason) under any of the previous password files?

Also, is the "ContinueAlways" AuthByPolicy valid? I couldn't find any
reference in the radiator docs for this...

Thanks,

Dave.
-------------------------------------------------------

-- 
Radiator: the most portable, flexible and configurable RADIUS server 
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald, 
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.



===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.

Reply via email to