Radius users state
tnt at kalik.net
tnt at kalik.net
Tue Sep 16 14:36:49 CEST 2008
>[Pavan]
>If NAS has a requirement that
>- user with privilage level > 2 should not be locked on 4 consecutive
>invalid attempts.
>In this case i need the privilage level even if authentication fails
>to determine if he can be locked or not.
>
>Is this the correct way to do this?
>-- Does maintaining a database of users invalid attemtps count in NAS
>make sense
I would upgrade to latest version and use something like perl to
authenticate. Your requirements are not standard stuff. Invalid attempts
are not logged by freeradius by default. You will have to count that
yourself. Your NAS might have facility to lock out users after a certain
number of failed attempts for local user database but not very likely
when using radius.
http://wiki.freeradius.org/Rlm_perl
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list