if all else fails, try using rlm_perl to do the authentication (or maybe, compare the password against both elements in the database, then 'rewrite' it as the first if it matches, so rlm_sql recognises it properly. This, of course, is a bit of a hack (but if it works every time and is less complex than a failover implementation, is it bad?). Jan On 03/02/07, Federico Giannici <giannici@neomedia.it> wrote:
Alan DeKok wrote:
Federico Giannici wrote:
Now we have to check every authentication against TWO different passwords (it's OK if ONE is matched). Something like setting two different and alternative "User-Password" attributes...
Sort of. See doc/configurable_failover.
I read it, but I'm a little confused...
How can I use it to make the AUTHENTICATE sections to be tried a SECOND time (with a different Cleartext-Password set by an authorization module), if the first time the authentication failed?
Thanks.
-- ___________________________________________________ __ |- giannici@neomedia.it |ederico Giannici http://www.neomedia.it ___________________________________________________ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html