Re: radius (fwd)

William Bulley (web@merit.edu)
Thu, 3 Oct 1996 11:44:17 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Network Operations Center: "Detail Scripts"
Previous message: Dan Hunt: "Election time!"
In reply to: Dan Hunt: "Election time!"

According to Timothy Deem:
>
> We are trying to create an account that cannot dial-in. We are running
> MERIT radius which is linked to the C2 security of our host. The
> following were performed by our System Administrator:
>
> We add this to the radius users file:
>
> username Prohibit = All
> username@COMSOURCE.NET Prohibit = All

The 2.4.21 code does not use PW_ALL (the macro for Prohibit = All) in
any line of the source code. So, this is probably why this isn't doing
what you'd expect.

To "block" an account you'd normally list the account ahead of the
DEFAULT entry, but with an explictly bogus password.

Regards,

web...

-- 
William Bulley, N8NXN              Senior Systems Research Programmer
Merit Network, Inc.                Email: web@merit.edu
4251 Plymouth Road, Suite C        Phone: (313) 764-9993
Ann Arbor, Michigan  48105-2785    Fax:   (313) 647-3185

Next message: Network Operations Center: "Detail Scripts"
Previous message: Dan Hunt: "Election time!"
In reply to: Dan Hunt: "Election time!"