Re: calling an external program for authentication

Dale E. Reed Jr. (daler@iea.com)
Sun, 17 Nov 1996 15:51:43 -0800

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Olav Schettler: "a)RADIUS-client b)Cache/proxy-RADIUS"
Previous message: Miguel A.L. Paraz: "calling an external program for authentication"
Maybe in reply to: Miguel A.L. Paraz: "calling an external program for authentication"

Miguel A.L. Paraz wrote:
>
> Hi,
>
> I have hacked radius 1.16 to do external authentication--implementing
> time limits, prevent duplicate logins, and other things through an
> external perl script. However, the stuff I did was a bit messy since
> we're now trying to keep state. Looking up some GDBM databases at
> authentication, and updating them at accounting, also caused some
> timeouts between client and user. The time to start up the perl
> interpreter and compile the script also contributes to this. Now,
> I'm working on something cleaner, and would probably release it if
> it's done right. :)

We have all this to an ODBC RDBMS without the pitfalls you talk
abou. Authentication with all the features enabled you mentioned
about is about 300ms, with a 10,000 user database.

We are also now working on a DLL to allow external authentication
and triggers. The triggers are pretty cool because you can
trigger a batch file, program, whatever when someone logs in.
Really handy for those systems who want to do SMTP dialup.

-- 
Dale E. Reed Jr.  (daler@iea.com)
_____________________________________________________________________
 Internet Engineering Associates   |  RadiusNT, Emerald, and NT FAQs
  Internet Solutions for Today     |    http://www.emerald.iea.com

Next message: Olav Schettler: "a)RADIUS-client b)Cache/proxy-RADIUS"
Previous message: Miguel A.L. Paraz: "calling an external program for authentication"
Maybe in reply to: Miguel A.L. Paraz: "calling an external program for authentication"