Re: authenticating ?????

Dale E. Reed Jr. (daler@iea.com)
Thu, 07 Nov 1996 10:33:53 -0800

Matthew S. Crocker wrote:
>
> > > we use bsdi for os on radius server and when our customers log in it now
> > > for what ever reaon takes aprox 2-3 min to get authenticated (tooo
> > > long). We have aprox 5000 customers
> > > and 22 portmasters. why is this and what can i do to speed this up, it
> > > wasn't like this before.
> >
> > I know this is sacreligious, so please don't flame me, but you can:
> >
> > 1. Get a Macintosh.
> > 2. Buy MacRADIUS.
>
> Heh, yeah right ;)
>
> How do you have your 5000 users stored? are they all in
> /etc/raddb/users? My guess is the radius daemon is linear searching all
> the 5000 users to authenicate. You should look into using a DBM for
> username:password:authenication info.

Thats why I love a true RDBMS. We tested over 50,000 MBRs, with
around 70,000 services (ppp accounts, etc) and were getting the
same auth time as a 1000 user entry users file. Now thats what
I call scaleability! :) When you look at the ability of being
able to setup up a redundant array of 5-10 RadiusNT servers
with distributed responsibilities and not having to deal with
"how do I hack radius to sync the /etc/passwd files" on my unix
radius servers, the "big picture" becomes clearer. I am NOT
startin a religious war, since we integrate unix radius server
with RadiusNT (similar to Merit's realm theory) and its a great
solution.

-- 
Dale E. Reed Jr.  (daler@iea.com)
_____________________________________________________________________
 Internet Engineering Associates   |  RadiusNT, Emerald, and NT FAQs
  Internet Solutions for Today     |    http://www.emerald.iea.com