Using DB instead of radutmp for simultaneous-use tracking
Hi there, In the accounting section, radutmp is used for tracking simultaneous-use. Is there a way to use DB::radacct table instead to check for simultaneous-use? thanks, det
On Fri, Sep 30, 2011 at 1:50 PM, Det Det <det.explorer@yahoo.com> wrote:
Hi there, In the accounting section, radutmp is used for tracking simultaneous-use. Is there a way to use DB::radacct table instead to check for simultaneous-use?
Sure. Comment-out radutmp and uncomment sql from "session" and "accounting" section. See also sql/*/dialup.conf, look for "simul_count_query". I usually enable simul_count_query and comment-out simul_verify_query. -- Fajar
Hi, Thanks a lot! Got it working! I'd like to extend the simul-check to group simul value. That is a group has simul limit, then if limit is reached a user belonging to that group should be denied login. Any idea how to implement this? Thanks! Det ________________________________ From: Fajar A. Nugraha <list@fajar.net> To: Det Det <det.explorer@yahoo.com>; FreeRadius users mailing list <freeradius-users@lists.freeradius.org> Sent: Friday, September 30, 2011 3:11 PM Subject: Re: Using DB instead of radutmp for simultaneous-use tracking On Fri, Sep 30, 2011 at 1:50 PM, Det Det <det.explorer@yahoo.com> wrote:
Hi there, In the accounting section, radutmp is used for tracking simultaneous-use. Is there a way to use DB::radacct table instead to check for simultaneous-use?
Sure. Comment-out radutmp and uncomment sql from "session" and "accounting" section. See also sql/*/dialup.conf, look for "simul_count_query". I usually enable simul_count_query and comment-out simul_verify_query. -- Fajar
On Tue, Oct 4, 2011 at 4:47 PM, Det Det <det.explorer@yahoo.com> wrote:
Hi, Thanks a lot! Got it working! I'd like to extend the simul-check to group simul value. That is a group has simul limit, then if limit is reached a user belonging to that group should be denied login. Any idea how to implement this?
That's tricky. The easiest thing I can think of is to add a check using unlang in authorize (use "%{sql:" expansion to get the data), and if it exceeds the limit set Auth-Type := Reject -- Fajar
participants (2)
-
Det Det -
Fajar A. Nugraha