Freeradius realm using multiple sql and virtual server
Alan Buxey
alan.buxey at gmail.com
Fri Jun 22 20:08:38 CEST 2018
post radiusd debug output, theres a slip or missing part here. the rest ,
from your description, sounds good
alan
On 22 June 2018 at 15:40, Philemon Jaomalaza <philemon.jaomalaza at gmail.com>
wrote:
> Hello Dear,
>
>
>
> On the same server where Freeradius 3 is installed, I would like to have
> more instance of sql for each NAS to use its virtual server and its
> database.
>
> I do not know if it's a good idea but that's what I did:
>
>
>
> - in proxy.conf
>
> .....................
>
> .......................
>
> realm mydomaintest.com {
>
> auth_pool = my_auth_failover
>
> virtual_server = mydomaintest.com
>
> }
>
>
>
> - I then created a module sql1 which is confgured for the database
> "radius1"
> from the sql module template in /freeradius/3.0/mods-available/ and linked
> in /freeradius/3.0/mods-enabled/
>
>
>
> sql sql1 {
>
> driver = "rlm_sql_mysql"
>
> .......................
>
> .......................
>
> pool = sql
>
> ......................
>
> group_attribute = "$ {.: instance} -SQL-Group"
>
>
>
> # This entry should be used for the default instance (sql {})
>
> # of the SQL module.
>
> # group_attribute = "SQL-Group"
>
> ......................................
>
> .....................................
>
> etc.
>
> }
>
>
>
>
>
> - in /freeradius/3.0/sites-available/ I created a mydomaintest.com virtual
> server from the deflaut.conf template and linked it to
> /freeradius/3.0/sites-enabled/
>
>
>
> and I changed all the words "sql" by default to "sql1":
>
>
>
> server mydomaintest.com {
>
> authorize {
>
> ...........................
>
> sql1
>
> ...........................
>
> }
>
>
>
> authenticate {
>
> # all default content
>
> }
>
>
>
> # etc.
>
> }
>
>
>
>
>
>
>
> The problems now when I try to authenticate like user at mydomaintest.com, he
> sees realm "mydomaintest.com" and Stripped the username in "user" but he
> does not try to use it in the database " radius1 "but always in sql the
> database" radius "of the blow it does not find the user and that gives
> Access-Reject.
>
>
>
> Where should I have made a mistake?
>
> What is the best trick to make this feature?
>
>
>
>
>
>
>
> Philemon Jaomalaza
>
> Tél. : +261 (0) 32 05 113 26
>
> Email : <mailto:philemon.jaomalaza at gmail.com>
> philemon.jaomalaza at gmail.com
>
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/
> list/users.html
More information about the Freeradius-Users
mailing list