[prev in list] [next in list] [prev in thread] [next in thread] 

List:       freeradius-users
Subject:    Re: fail-over configration
From:       "Alan DeKok" <aland () ox ! org>
Date:       2004-05-31 14:46:56
Message-ID: 20040531144656.B13B316E1B () mail ! nitros9 ! org
[Download RAW message or body]

baffy200y <baffy200y@yahoo.co.jp> wrote:
> 1.Checking users file
>   If the User-Name is found,check the User-Password.

  The server can't do that.  The "authorize" section doesn't do any
authentication.

  I would re-write your request as:

> 1.Checking users file
>   If the User-Name is not found, go to "Checking SQL(Mysql) DataBase."
>      Check the Calling-Station-Id.
>         if the Calling-Station-Id is correct, continue to "authenticate"
>         if the Calling-Station-Id is incorrect,reject the user.

> 2.Checking SQL(Mysql) DataBase.
>   If the User-Name is not found, reject the user.
> 
>      Check the Calling-Station-Id.
>         if the Calling-Station-Id is correct, continue to "authenticate"
>         if the Calling-Station-Id is incorrect,reject the user.

  In "authenticate", check the User-password.  If correct, the user is
authenticated.
> if the User-Password is incorrect,reject the user


  The server can do this.  See doc/configurable_failover for how to
configure the "authorize" section to do "check files, if not found,
check sql".

  Alan DeKok.


- 
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
[prev in list] [next in list] [prev in thread] [next in thread]