[RadiusNT Digest]

Sun, 23 Aug 1998 00:01:22 -0700

from "Kevin Ingram" <kingram@cameron.net>

Message 2: 2.5.124 gives Bad user name error for all users
from "Serkan SUBASI" <ssubasi@turk.net>

Message 3: Re: FIX: VerifyMailUser and Multiple Virtual Domains
from Thomas Massano <ThomasM@InletCorp.com>

Message 4: SQL/S transition
from Ted Olson <tolson@ocsnet.net>

Message 5: Re: Unix passwd file
from "George Mansoor (LS)" <ghmls@4link.net>

Message 6: OLD Re: SQL consolidation and user logins
from "Rudy Komsic" <rudyk@cyberglobe.net>

..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 1 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
From: "Kevin Ingram" <kingram@cameron.net>
Date: Sat, 22 Aug 1998 06:18:01 -0500

>PAP works, but if I restart the NT server I have to remove the registry
>entries again for CHAP and SPAP. They are haunting me.

You only have to do this once after each time you make any modifications to
the RRAS settings in Control Panel >> Network. Once you complete your setup,
remove the CHAP and SPAP registry entries and they won't come back again.

..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 2 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: 2.5.124 gives Bad user name error for all users
From: "Serkan SUBASI" <ssubasi@turk.net>
Date: Sat, 22 Aug 1998 15:40:13 +0300

we have running version 2.5.116 on (MS SQL server 6.5, SP4) ,with no
headaches in general,
(except stop records only and manual calls update does not work , -i.delay-
problem )

however when I upgrade to 2.5.124, I start to get Bad user name errors

such a query appears, (username ='') for all users
insert radlogs (RadLogMsgID, LogDate, Username,Data) values

but in the parsing screen I see the names of users normally
anyone have any idea ?

Serkan S

..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 3 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: Re: FIX: VerifyMailUser and Multiple Virtual Domains
From: Thomas Massano <ThomasM@InletCorp.com>
Date: Sat, 22 Aug 1998 10:26:56 -0400

Rudy, looks like a great idea! I'm gonna give it a try, thanks!

At 06:45 PM 8/20/98 , you wrote:
>After spending some time battling with SQL's stored Procedure VerifyMailUser
>to get it to list only 1 user for the proper domain, I had modified the
>following lines:
>AND ( Login = @username
>OR shell = @username
>OR Email = @username + "@" + @domain)
>To look like this:
>AND ( Email = @username + "@" + @domain
>OR shell + "@" + d.maildomain = @username + "@" + @domain
>OR Login + "@" + d.maildomain = @username + "@" + @domain)
>In Emerald, when I set someone a new subaccount for the isp domain, I use the
>Username: support
>Password: xxxx
>EMail: <Blank>
>Now when I have a client who has a virtual domain name on our server (eg:
>test.com), I use the following to setup his Email information to avoid
>username and email login duplication:
>Username: support-test.com
>Password: yyyy
>EMail: support@test.com
>Now when the user tries loggin in via the virtually hosted domain (eg: pop3:
>mail.test.com) when it asks for username, he would type in support and his
>yyyy password and VerifyMailUser will properly select the right username for
>the account. The support-test.com username is there as reference to know
>which support account from the domain name it belongs to.
>Wel here is the FULL VerifyUserName procedure if anyone would like to use it.
>PLEASE NOTE: If you did not specify Domains and Billing Groups for
Domains in
>the Emerald Administration, You MUST Add the EMail: Address for each domain
>client. Without it, he will not be able to login.
>Hope this helps a lot of you Mail domain hosters.
>Rudy Komsic
>President, Network Administrator - Cyberglobe Communications Inc.
>4996 Place de la Savane, Suite 200, Montreal, Quebec, H4P 1Z6
>Tel: (514)342-3883 Fax: (514)342-5139 E-Mail: rudyk@cyberglobe.net
>VerifyMailUser Procedure below.
>if exists (select * from sysobjects where id =
>and sysstat & 0xf = 4)
> drop procedure dbo.VerifyMailUser
>CREATE PROCEDURE VerifyMailUser @username varchar(32), @domain varchar(32),
>@esid integer AS
>Select Login, Shell, EMail, d.MailDomain, Password, HomeDir
>From MasterAccounts ma, SubAccounts sa, Groups g, Domains d, AccountTypes at
>Where ma.CustomerID = sa.CustomerID
>AND ma.GroupID = g.GroupID
>AND g.DomainID = d.DomainID
>AND at.AccountType = sa.AccountType
>AND at.ExternalSystemID = @esid
>AND ( Email = @username + "@" + @domain
>OR shell + "@" + d.maildomain = @username + "@" + @domain
>OR Login + "@" + d.maildomain = @username + "@" + @domain)
>Select Login, Shell, EMail=a.Alias, d.MailDomain, Password, HomeDir
>From MasterAccounts ma, SubAccounts sa, Groups g, Domains d, Aliases a,
>AccountTypes at
>Where ma.CustomerID = sa.CustomerID
>AND ma.GroupID = g.GroupID
>AND g.DomainID = d.DomainID
>AND sa.AccountID = a.AccountID
>AND at.AccountType = sa.AccountType
>AND at.ExternalSystemID = @esid
>AND a.Alias = @username + "@" + @domain

..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 4 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: SQL/S transition
From: Ted Olson <tolson@ocsnet.net>
Date: Sat, 22 Aug 1998 09:30:26 -0700

Has anyone written a 'transition guide' to smooth the way from Access to
SQL/S? Since many have gone this route, it seems inefficient to stumble
along when there must be a few pointers that would be helpful. TIA...

OCS Software

..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 5 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: Re: Unix passwd file
From: "George Mansoor (LS)" <ghmls@4link.net>
Date: Sat, 22 Aug 1998 13:31:42 -0700

Have you resolved this? Is there a way to take the encrypted passwords and
put them into your ODBC datasource? I have some UNIX users and some users that
will only be in the ODBC database? What would be the best way to merge these
user sets? The unix users will have to be refreshed on a periodic basis. Any



Greg Johnson Perry-Spencer wrote:

> I have a FreeBSD Unix passwd file that I am trying to use with RadiusNT.
> The hashing method is MD5. All encrypted passwds in the passwd file start
> with $1$. When I run radius x15 (debug mode), I see that radius reads the
> entry from the Unix password file and displays it on the screen:
> (UNIX) User Password: password File Password: $1$.......
> but the Encrypted Password line reads:
> Encrypted Password: $1......
> If does not contain the $ after the 1. Also, the password string is much
> shorter than the Unix encrypted password string. I then get a message:
> Sending Reject of id 93 to cdf3a914 (
> Thanks,
> Greg Johnson

..------ ------ ------ ------ ------ ------ ------ ------ ------ ------.
| Message 6 |
'------ ------ ------ ------ ------ ------ ------ ------ ------ ------'
Subject: OLD Re: SQL consolidation and user logins
From: "Rudy Komsic" <rudyk@cyberglobe.net>
Date: Sat, 22 Aug 1998 19:07:58 -0400

Hi Dale,

I was wondering if it is possible to create Emerald/RadiusNT to have 2
accounting sections. One accounting section for RadiusNT (The Temp section
Like tempcalls and callsonline etc.) and a second for Emerald (Full accounting
access)... This way when a calls consolidation is performed, RadiusNT would
have No problems posting accounting information into the Main connection but
if a calls consolidation flag is detected, it will revert to the secondary
section where it is stored in tempcalls. Then when the calls consolidation is
finished, a check would be performed by the SQL Server to determine if there
are any Information in tempcalls and move them into Calls.

This would then make RadiusNT/Emerald More solid and less headaches. The
RadiusNT could check a table called consolidateflag to see if it is triggered.
If so, then it will automatically dump into Tempcalls... then when the flag
clears, it will check to see if there are any info in tempcalls and move them
over to Calls.

-----Original Message-----
From: Dale E. Reed Jr. <daler@iea-software.com>
To: radiusnt@iea-software.com <radiusnt@iea-software.com>
Date: August 10, 1998 4:48 PM
Subject: Re: SQL consolidation and user logins

>Mike Miller wrote:
>> We are using RadiusNT 2.2 with ODBC and a MS-SQL 6.5 sp4 SQL database. We
>> keep 2 months accounting for our records. Our database is generally has
>> around 300MB to 400MB of space used to handle this. Every morning at 4AM
>> SQL executive runs a script that deletes all calls records over 2 months
>> old. According to SQL executive, this process has been taking between 12
>> and 15 minutes to complete each night. Our problem is that during the
>> consolidation process, there are periods of time in which no users can log
>> onto the network. The Radius screen itself just freezes on an accounting
>> request until consolidation completes. Originally Radius was installed on
>> the same machine as SQL Server, but because of the login problems we moved
>> it onto a different machine from the SQL server... no luck, still freezes
>> during consolidation. The same copy of Radius is performing authentication
>> and accounting. I suspect that the Calls table is getting locked during
>> the mass delete query, but am not sure if this is causing our problem or
>> not. Has anyone dealt with this? Is there a workaround that will allow us
>> to perform consolidation without locking out logins? Would running two
>> copies of radius on two seperate machines (one for authentication and one
>> for accounting) help or am I heading the wrong direction with this?
>RadiusNT 2.2 uses one connection for both accounting and authentication.
>Therefore, when you delete records from the calls table, it hangs the
>connections until the lock it done (including RadiusNT).
>RadiusNT 2.5 has a different connection for accounting and
>Therefore, when you start deleting a bunch of records, auth continues
>accounting hangs until you are done (not much you can do about that).
>Moral of the story: Upgrade to RadiusNT 2.5. :)
>Dale E. Reed Jr. (daler@iea-software.com)
> IEA Software, Inc. | RadiusNT, Emerald, and NT FAQs
> Internet Solutions for Today | http://www.iea-software.com