> Date: Tue, 19 Sep 1995 16:57:18 -0700 (PDT)
> From: Brian 'MegaZone' Bikowicz <megazone@livingston.com>
> To: cnielsen@ut.rockymt.net
> Cc: portmaster-users@livingston.com
> Subject: Re: more than two sites.
>
> Once upon a time Christian Nielsen shaped the electrons to say...
> >So, I set firstradius first to main server
> >set the second to our second server.
> >but, when I try to login using the info from the second server, it will
> >not work, but yet anonther portmaster works with the first server.
>
> I really didn't quite understand it...
>
> If you mean you have a user in host 2 but not host 1 - that won't work.
> It *only* goes to host 2 if host 1 doesn't respond. If host one says
> it doesn't know the user, it fails, host 2 is never asked.
>
What you need to have is radius on host 1 query the radius on host 2 if
it can't validate a user. The PM will only talk with one radius server
at a time. I supposed you could have the radius server NOT respond with
a reject message and wait for the PM to timeout and try the other host.
Take a look at merit radius I think they have the code already written
to query a chain of radius servers.
-Matt
-Matthew S Crocker "The mask, given time, comes
matthew@crocker.com to be the face itself." -anonymous
*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*OS/2*
*linux*linux*linux*linux*linux*linux*linux*linux*linux*linux*linux*linux*