From: Robert Lowe (Robert.H.Lowe@lawrence.edu)
Date: Fri Jul 16 2004 - 12:39:03 CDT
Tim,
Are you willing to test a new version of the NetReg CIDR kit with better
support for RADIUS? This version will allow you to specify multiple
servers. During the authentication process, the server used will be
chosen randomly, providing some crude load-balancing, along with failover.
I'd like someone to try it out who is actually using RADIUS before I
release the new kit.
-Robert
Tim Tyler wrote:
> Dave,
> Thanks a ton! It appears to be working. That was rather painless.
> Netreg should add this as a permanent feature since I imagine there are
> a number of radius users still out there.
> Tim
>
> At 10:10 AM 6/29/2004, you wrote:
>
>> Tim,
>>
>> You'll need to install Authen::Radius which can be downloaded from
>> www.cpan.org. Once you've done that then you need to add the
>> following to
>> variables.pl file:
>>
>> $AUTH_METHOD = "RADIUS";
>> # if ($AUTH_METHOD = "POP") { use Mail::POP3Client; }
>> if ($AUTH_METHOD = "RADIUS") { use Authen::Radius; }
>> # if ($AUTH_METHOD = "FTP") { use Net::FTP; }
>>
>> I've also added to the variables.pl file:
>>
>> $RADIUSSERVER = "x.x.x.x:1645";
>>
>> Then in your register.cgi file you'll need to add something to the
>> effect of
>> these lines:
>>
>> sub authenticate {
>> if ($AUTH_METHOD eq "POP") {
>> $pop = new
>> Mail::POP3Client("$FORM{'user'}","$FORM{'pass'}","$POPSERVER");
>> $alive = $pop->POPStat;
>> $popmsg = $pop->Message;
>> $pop->Close;
>> unless ($alive ne "-1") {
>> error("Authentication Failed<P>ERROR:<br>$popmsg");
>> }
>> }
>> elsif ($AUTH_METHOD eq "FTP") {
>> $ftp = Net::FTP->new($FTPSERVER);
>> $ftp->login($FORM{'user'}, $FORM{'pass'});
>> $ftp->pwd()||error("Authentication Failed<P>Bad Username or
>> Password.");
>> }
>> elsif ($AUTH_METHOD eq "RADIUS") {
>> $r = new Authen::Radius(Host => $RADIUSSERVER, Secret => <your
>> Radius
>> Seceret>);
>> $r->check_pwd($FORM{'user'}, $FORM{'pass'})||error("Authentication
>> Failed Bad Username or Password.\n");
>> }
>> else {
>> error("No Authentication Method");
>> }
>> }
>>
>> That should do it. One thing that I would like to add is some
>> redundancy if
>> that Radius server goes down. At some point I need to code that, just
>> haven't gotten around to it. If you have any questions let me know.
>>
>> Dave
>>
>> -----Original Message-----
>> From: owner-netreg@southwestern.edu
>> [mailto:owner-netreg@southwestern.edu]
>> On Behalf Of Tim Tyler
>> Sent: Tuesday, June 29, 2004 10:55 AM
>> To: netreg@southwestern.edu
>> Subject: NetReg: Radius authentication for netreg?
>>
>> Netreg experts,
>> We got netreg v1.3rc2 up and running and it seems to work well
>> with POP
>> authentication for us. Great instructions!
>> However, we would prefer to use Radius instead of POP or the other
>> authentication methods at the moment. Has anyone gotten Radius
>> working with
>> this version? If so, could you share the code and steps to getting it
>> working?
>> Much appreciation! -thanks!
>> Tim
>>
>> Tim Tyler
>> Network Engineer
>> --------------------------------------
>> This Email Was brought to you by
>> WebMail
>> A Netwin Web Based EMail Client
>> http://netwinsite.com/webmail/tag.htm
>> **********************************************************************
>> To unsubscribe from this list, send an e-mail message to
>> majordomo@southwestern.edu containing a single line with the words:
>> unsubscribe netreg
>> Send requests for assistance to: owner-netreg@southwestern.edu
>> **********************************************************************
>> **********************************************************************
>> To unsubscribe from this list, send an e-mail message to
>> majordomo@southwestern.edu containing a single line with the words:
>> unsubscribe netreg
>> Send requests for assistance to: owner-netreg@southwestern.edu
>> **********************************************************************
>
>
> Tim Tyler
> Network Engineer - Beloit College
> tyler@beloit.edu
> **********************************************************************
> To unsubscribe from this list, send an e-mail message to
> majordomo@southwestern.edu containing a single line with the words:
> unsubscribe netreg
> Send requests for assistance to: owner-netreg@southwestern.edu
> **********************************************************************
--
_/ _/ _/ Robert Lowe, Network Manager
_/ _/ _/ Computer Services
_/ _/ _/ Lawrence University / Appleton,WI 54912 / USA
_/ _/ _/ Voice: 920/832-6572 Fax: 920/832-7374
_/_/_/_/ _/_/_/_/ e-mail: Robert.H.Lowe@lawrence.edu
"Only the mediocre are always at their best." --Jean Giraudoux
**********************************************************************
To unsubscribe from this list, send an e-mail message to
majordomo@southwestern.edu containing a single line with the words:
unsubscribe netreg
Send requests for assistance to: owner-netreg@southwestern.edu
**********************************************************************
This archive was generated by hypermail 2.1.4 : Thu Aug 12 2004 - 12:01:47 CDT