refowarding the radius request when authentication fails
Hello, in the authentication step, i try several authentication against otp server, but if all are failed if the user is not know, i would like to re forward the radius request to another radius server. except the suffix mechanism in authorize section that i know a little bit, i don't see how to do that easily in the authentication section. The only solution i see, but not very nice, is to build a radius client in perl (define in the authentication function (rlm_perl)). If someone has an idea ??? Regards, Laurent
On 12/12/12 22:14, laurent.feron@free.fr wrote:
Hello,
in the authentication step, i try several authentication against otp server, but if all are failed if the user is not know, i would like to re forward the radius request to another radius server.
The server can't do that, because it doesn't work for many authentication types. If you want to do that, you'll have to implement it yourself, and ensure that your auth type can be "re-tried".
ok. Maybe within a rlm_perl script i recreate a radius packet to send it to another radius server. Thanks. I will try... ----- Mail original ----- De: "Phil Mayers" <p.mayers@imperial.ac.uk> À: freeradius-users@lists.freeradius.org Envoyé: Jeudi 13 Décembre 2012 13:03:54 Objet: Re: refowarding the radius request when authentication fails On 12/12/12 22:14, laurent.feron@free.fr wrote:
Hello,
in the authentication step, i try several authentication against otp server, but if all are failed if the user is not know, i would like to re forward the radius request to another radius server.
The server can't do that, because it doesn't work for many authentication types. If you want to do that, you'll have to implement it yourself, and ensure that your auth type can be "re-tried". - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (2)
-
laurent.feron@free.fr -
Phil Mayers