It has been managerially suggested that should both our primary and backup
radius servers "go down" and be unable to authenticate usernames/passwords,
rather than lose all dialup access for our portmaster userbase, we would
(for the period of the authentication failure only) like to allow *any* user
to log in without authentication...
To implement this on an annex 4000 in our stable I am considering writing a
script that will monitor its authentication servers (acp software), and if
they both go down, it will log into the annex and turn all security off
(i.e. issue 'set annex enable_security n' at the CLI).
Is there a similar approach that would work for a PM3? Can anyone think of
*any* way this could be done? I've been getting a headache trying to come up
with a strategy to implement this: I keep coming up with ways that involve
switching radius users files, and then remember that I'm assuming the radius
servers are dead in the first place...
Any help or comments much appreciated!
M.
-- =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-= Mark O'Leary, | Voice: +44 (0161) 2756110 Network Support Officer, | Email: Mark.O'Leary@mcc.ac.uk Manchester Computing, UK | or: mark@mcc.ac.uk - To unsubscribe, email 'majordomo@livingston.com' with 'unsubscribe portmaster-users' in the body of the message.