Generating the Filter-ID for ChoiceNet

Mike Jipping (jipping@macatawa.org)
Thu, 8 May 1997 14:51:01 -0400 (EDT)

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Andy Thaggard: "WTB"
Previous message: Stephen Zedalis: "Re: Users to port ratio"

We are a community-based Free-Net with 3000+ users. So that we don't
require a humungous RADIUS database file, we have altered the RADIUS
server to use a "user.service" login id and to give the RADIUS entry for
"service" upon authorizing the "user" (e.g., "fred.ppp" authenticates
"fred" and gives back the "ppp" entry from the RADIUS database).

And now we want to use ChoiceNet. The best way I can see this working is
to alter RADIUS one more time to return a "Filter-Id" that is (somehow)
generated to hold the user's name from the above scenario. (Some kind of
template substitution ala "printf").

My questions:

(a) Is this a good scheme? Does anyone do this?

(b) What if the generated filter does not exist? What if RADIUS
returns a pair like "Filter-Id = fred-filter" and "fred-filter"
does not exist? Does the system graciously ignore these errors?

Thanks in advance. We are excited about the ways that we can use
ChoiceNet if this is in place. Please let me know.

-- Mike

Next message: Andy Thaggard: "WTB"
Previous message: Stephen Zedalis: "Re: Users to port ratio"