Re: Merit Radius and Portmaster
Jeff Mcadams (jeffm@iglou.com)
Thu, 16 Nov 1995 10:16:15 -0500 (EST)
Thus spake William Bulley
>According to Garry Shtern:
>> Can anybody tell me how exactly do you set up Portmaster and
>> Merit Radius together to authenticate between PPP, SLIP and Telnet
>> logins. So for instance you get a prompt Username:, then Password: and
>> then after it verifies who you are, it comes up with the Prompt Choose:
>> and you type ppp,slip or telnet there...
>
>I take it my portings here haven't been adequate... :-)
>
>The setup we use relies upon the PortMaster prompting for the "host:"
>first, then the "login:" and "password:"
>
>You set this up using "set sXX host prompt" or "set all host prompt"
>I believe, but I could have the wrong syntax...
>
>As long as the NAS sends the Service-Type "hint" to RADIUS, the stuff
>in Merit RADIUS (protocol_check() routine) and in our users file (see
>the commentary near the end of the users file) does what you want. I
>think! The user is "given" whatever protocol he/she dials in with...
The main problem being for those systems that have a large installed
user-base, switching the current users over to host: login: password:
order rather than login: password: service: (or whatever) is pretty much
an insurmountable task. Also, just adding the host: prompt before
doesn't work either since its breaks current scripts that are out there.
The host prompt works fine and it sends the correct hints to the radius
server, but when it breaks the thousands of users that you already have,
using that sort of setup is just impractical.
Jeff McAdams | "A strange game.
IgLou Internet Services | The only winning move is not to play."
e-mail: jeffm@iglou.com | -- Joshua