Re: FW: Problems with Rads

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Previous message: Fox, Thomas: "FW: Problems with Rads"
• Next message: Dale E. Reed Jr.: "Re: Users text file to database util?"
• Maybe in reply to: Fox, Thomas: "FW: Problems with Rads"
• Next in thread: Fox, Thomas: "RE: FW: Problems with Rads"

Note two things. First, the Framed-Address and Idle-Timeout should
*NOT* be check attributes, but you have them confgiured as such. If
you look at the last four lines above, you'll note there is NOT
a Framed-Address attribute being returned to the RADIUS client (hence
the assigned address by default).

Go into your RadConfigs table and double check the RadCheck column.
In almost ALL cases, unless the attribute is a check attribute (see
below) the column needs to NOT be a 1. If the column is a 1 for
that record, its a check attribute, not a reply attribute. For
a check attribute, RadiusNT will look for a matching attribute
in the authentication request and compare the two. If they don't
match, RadiusNT will reject the request (and put a check attribute
failur in the RadLogs for the user). Check attributes are *NOT*
sent in the list of reply attributes back to the NAS.

Side note, this is only relevant for RadiusNT 2.5 and above, since
RadiusNT 2.2 doesn't support check attributes in ODBC mode.

-- Dale E. Reed Jr.  (daler@iea-software.com)_________________________________________________________________       IEA Software, Inc.      |  RadiusNT, Emerald, and NT FAQs Internet Solutions for Today  |   http://www.iea-software.com

• Previous message: Fox, Thomas: "FW: Problems with Rads"
• Next message: Dale E. Reed Jr.: "Re: Users text file to database util?"
• Maybe in reply to: Fox, Thomas: "FW: Problems with Rads"
• Next in thread: Fox, Thomas: "RE: FW: Problems with Rads"