Hello Jeremy -
On Wed, 31 May 2000, Jeremy C. Reed wrote:
> I am trying to use the routines from goodies/hooks.txt.
>
> I am using 2.16.
>
> This file says "[t]he hooks are designed for use with Radiator 2.15". But
> the changes for 2.16 say that the hooks file has been updated -- so I
> assume it works for 2.16 also.
>
Yes. I'll change it to read "Radiator 2.15 or later".
> The hooks.txt documentation says:
> DefineGlobalVar ProfileDefs "%D/profile_definitions_file"
> But I believe this should be
> DefineGlobalVar ProfileDefsFilename %D/profile_definitions_file
> (Notice the "Filename" and no quotes.)
>
I'll fix this too.
> I want to add attributes if it comes from a certain client. So I added an
>
> Identifier web
> to my testing clients (in the <Client> containers).
>
> My test config has:
>
> DefineGlobalVar ProfileDefsFilename %D/etc/profile.def
> StartupHook file:"%D/hooks/getProfiles"
>
> and:
>
> <Realm iwbc>
> AcctLogFileName /usr/adm/radacct/%C/detail
> <AuthBy FILE>
> Filename %D/users/iwbc.users
> DefaultReply Service-Type=Framed,Framed-Protocol=PPP,\
> Framed-IP-Netmask=255.255.255.255,Framed-Routing=None,\
> Framed-Compression=Van-Jacobson-TCP-IP,Framed-MTU=1500
> PostAuthHook file:"%D/hooks/replaceProfiles"
> </AuthBy>
> </Realm>
>
>
> My etc/profile.def contains:
>
> Tigris:web:ACC-Ip-Pool-Name="spiretech",ACC-DNS-Server-Pri=216.228.70.2,ACC-DNS-
> Server-Sec=216.228.65.6
>
> I can't seem to figure out how to get replaceProfiles to work. I want
> these attributes added:
>
There are two keys when using these profiles. The first is the symbolic name of
the Profile and the second is an Identifier, usually set on a per Client basis.
In operation, the symbolic profile name comes from a user file or user record,
while the Identifier is usually a reference to a type of NAS.
So in your case:
Tigris:web:ACC-Ip-Pool-Name="spiretech",ACC-DNS-Server-Pri=216.228.70.2,ACC-DNS-
Server-Sec=216.228.65.6
You are saying that the user record has an attribute called Profile, the value
of which is set to "Tigris" and the Client Identifier is set to "web". I would
have expected the order here to be reversed:
web:Tigris:ACC-Ip-Pool-Name="spiretech",ACC-DNS-Server-Pri=216.228.70.2,ACC-DNS-
Server-Sec=216.228.65.6
with the user record containing Profile = web (as a web-only user?) and the
Client Identifer set to Tigris (ie. these are the attributes that we have to
set for a Tigris NAS).
You can see what the hooks are doing by setting the debug level to trace 4.
hth
Hugh
--
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, Interbiller, TACACS+, PAM, external, etc, etc.
Available on Unix, Linux, FreeBSD, Windows 95/98/2000, NT, MacOS X.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
