Thanks Ivan for your valuable inputs. I would look at rlm_perl, if i have to lock radius users. On Tue, Sep 16, 2008 at 6:06 PM, <tnt@kalik.net> wrote:
[Pavan] If NAS has a requirement that - user with privilage level > 2 should not be locked on 4 consecutive invalid attempts. In this case i need the privilage level even if authentication fails to determine if he can be locked or not.
Is this the correct way to do this? -- Does maintaining a database of users invalid attemtps count in NAS make sense
I would upgrade to latest version and use something like perl to authenticate. Your requirements are not standard stuff. Invalid attempts are not logged by freeradius by default. You will have to count that yourself. Your NAS might have facility to lock out users after a certain number of failed attempts for local user database but not very likely when using radius.
http://wiki.freeradius.org/Rlm_perl
Ivan Kalik Kalik Informatika ISP
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html