Hugh,
I think this little topic would be a great addition to the FAQ, or maybe
another sample config in goodies that illustrated this.
Once I moved all my AuthBy defs out of the Realm definitions as you
suggested, it made the config way easier to read. And that AuthBy UNIX
thing probably bites alot of people I'll bet; it's just not obvious at
first that it would cause it to be called twice...
Thanks,
Charles
On Wed, 12 Jul 2000, Hugh Irvine wrote:
> The Realm DEFAULT above is a bit confusing, as the AuthBy UNIX will be called
> twice. As a general rule, it is preferable to define your AuthBy clauses first
> with Identifiers, then refer to them in your Realms and so on by Identifer.
> This makes configuration files *much* easier to understand.
>
> # Define AuthBy's first with Identifiers for later use
> <AuthBy FILE>
> Identifier Check_FILE
> Filename /usr/adm/radius/users
> AddToReply Service-Type=Framed-User,Framed-Protocol=PPP
> </AuthBy>
>
> <AuthBy UNIX>
> Identifier System
> Filename /etc/master.passwd
> AddToReply Service-Type=Framed-User,Framed-Protocol=PPP
> </AuthBy>
>
> # Now define Realm(s) and/or Handlers
> <Realm DEFAULT>
> AuthBy Check_FILE
> </Realm>
>
> hth
>
> Hugh
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
