Thank you Alan :) , it works. I addedd the line: 'authentication timer reauthenticate server' to the FastEthernet port on the cisco switch.That is, it will receive reauthentication time as defined on the radius server. Now i want to add users into mysql database and apply similar attributes defined in the users file. Reading the documentation in radiusd.conf, it says attributes can be added to radcheck or radgroupcheck table in mysql, but Max-Daily Session attribute is not recognized. it says "Could not find Check item value pair" in debug mode. I have tried to add attributes in radreply and radgroupreply, and that didn't work either. Please how can I achieve this.<br>
<br><br>##############Debug log###########<br>rlm_sql (sql): Released sql socket id: 0<br> modcall[authorize]: module "sql" returns ok for request 60<br>rlm_counter: Entering module authorize code<br>rlm_counter: Could not find Check item value pair<br>
modcall[authorize]: module "daily" returns noop for request 60<br>modcall: leaving group authorize (returns updated) for request 60<br> rad_check_password: Found Auth-Type EAP<br><br>#########mysql ############<br>
+----+-----------+-------------------+----+-----------------+<br>| id | GroupName | Attribute | op | Value |<br>+----+-----------+-------------------+----+-----------------+<br>| 1 | student | Service-Type | == | Login-User | <br>
| 2 | student | Framed-MTU | == | 576 | <br>| 3 | student | Max-Daily-Session | == | 240 | <br>| 4 | student | Framed-If-Address | == | 255.255.255.254 | <br>| 5 | student | Max-Daily-Session | == | 240 | <br>
+----+-----------+-------------------+----+-----------------+<br>5 rows in set (0.00 sec)<br><br><br>mysql> select * from radgroupreply;<br>+----+-----------+-------------------+----+-----------------+<br>| id | GroupName | Attribute | op | Value |<br>
+----+-----------+-------------------+----+-----------------+<br>| 1 | student | Service-Type | == | Login-User | <br>| 2 | student | Framed-MTU | == | 576 | <br>| 3 | student | Max-Daily-Session | == | 240 | <br>
| 4 | student | Framed-IP-Address | == | 255.255.255.254 | <br>+----+-----------+-------------------+----+-----------------+<br><br><br><br>
mysql> select * from radcheck where username="student";<br>+-----------+----------+-------------------+----+----------+<br>| id | UserName | Attribute | op | Value |<br>+-----------+----------+-------------------+----+----------+<br>
| 10 | student | User-Password | == | password | <br>| 11 | student | Max-Daily-Session | == | 240 | <br>+-----------+----------+-------------------+----+----------+<br>2 rows in set (0.00 sec)<br>
<br><br>mysql> select * from radreply where username="student";<br>+----+----------+-------------------+----+-------+<br>| id | UserName | Attribute | op | Value |<br>+----+----------+-------------------+----+-------+<br>
| 8 | student | Max-Daily-Session | := | 240 | <br>+----+----------+-------------------+----+-------+<br>1 row in set (0.00 sec)<br><br><br>############# radiusd.conf #############<br>accounting {<br><br> detail<br>
daily<br> radutmp<br> sql<br>}<br><br><br>authorize {<br> preprocess<br> mschap <br> suffix<br> eap<br> files<br> sql<br> daily<br>}<br><br>instantiate {<br>
<br> exec<br> expr<br> daily<br>}<br><br><br><div class="gmail_quote"><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Set session timer to one hour. Or adjust reauth times on the Cisco<span class="HOEnZb"><font color="#888888"><br><br>alan<br><br><br>
</font></span></blockquote></div><br>