checkrad cisco
Kevin Bonner
keb at pa.net
Fri Jan 19 22:37:20 CET 2007
On Friday 19 January 2007 06:54, Joe Maimon wrote:
> But neither does snmpwalk -- without this patch.
> I dont know which is correct.
>
> --- /usr/sbin/checkrad 2006-12-14 02:22:21.000000000 -0500
> +++ /usr/local/sbin/checkrad.deb 2007-01-19 06:48:25.000000000
> @@ -401,7 +401,7 @@
> if($login eq $ARGV[3]) {
> return 1;
> }else{
> -
> $out=snmpwalk($ARGV[1],$pass,".iso.org.dod.internet.private.enterprises.9.1
>0.19.1.3.1.1.3"); +
> $out=snmpwalk($ARGV[1],$pass,".iso.org.dod.internet.private.enterprises.9.9
>.150.1.1.3.1.2"); if($out=~/\"$ARGV[3]\"/){
> return 1;
> }else{
Using the Cisco SNMP Object Navigator [1], the description and tree path for
9.9.150.1.1.3.1.2 (AAA-SESSION-MIB) sounds more correct than the one for
9.10.19.1.3.1.1.3 (POP-MGMT-MIB). Testing this on a cisco LNS, I get valid
user info using 9.9.150.1.1.3.1.2 and an invalid OID error when using
9.10.19.1.3.1.1.3.
I suspect numerous people just make local changes for checkrad. Our local
copy has the patches in bug#166 as well as some minor tweaks.
Kevin Bonner
[1] http://tools.cisco.com/Support/SNMP/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-devel/attachments/20070119/482decfc/attachment.pgp>
More information about the Freeradius-Devel
mailing list