Re: Radius Hints

William Bulley (web@merit.edu)
Tue, 10 Oct 1995 18:52:16 -0400 (EDT)

According to Jeff Mcadams:
>
> I've got a PM-25 set up here connecting to a Radius server (Merit 2.4),
> but I have a question about the service hints that the portmaster is
> (supposedly?) sending to the Radius server. We have (at this point) a
> separate login id for slip/ppp logins and for shell logins. I'm
> connecting to the portmaster and typing in my shell login and password,
> and getting PPP frames back in response. I would assume that if the
> portmaster started getting PAP frames then it would send a PPP hint
> (that's a no brainer) but how do you figure out what other hints to send
> to the radius server?
>
> What I would like to do here, would be for it to do a Login-User, unless
> it gets PAP, and then to default to PPP, is there any way to kind of
> guide the PM to do something like this?

The "hints" come from:

1) direct PPP packets -- PPP obviously

2) the user entering:

a) SLIP pseudo host -- SLIP obviously

b) PPP pseudo host -- PPP obviously

3) the user entering a DNS name and then his access ID and password
-- dumb terminal obviously

This scheme (in Merit RADIUS) relies upon the fact that we prompt for
the "host:" first and _then_ the "login:" and "password:" afterwards.

This is set up using the "set host prompt" command in ComOS (see page
5-11 of the PortMaster January 1994 manual). The "SLIP pseudo host"
and "PPP pseudo host" are documented on that page too. Gee... :-)

We don't do the rlogin stuff just telnet, PPP and SLIP (actually CSLIP).

Regards,

web...

-- 
William Bulley, N8NXN              Senior Systems Research Programmer
Merit Network Inc.                 Domain: web@merit.edu
4251 Plymouth Road                 MaBell: (313) 764-9993
Ann Arbor, Michigan  48105-2785    Fax:    (313) 747-3185