Line 247... |
Line 247... |
247 |
#
|
247 |
#
|
248 |
# Look in an SQL database. The schema of the database
|
248 |
# Look in an SQL database. The schema of the database
|
249 |
# is meant to mirror the \"users\" file.
|
249 |
# is meant to mirror the \"users\" file.
|
250 |
#
|
250 |
#
|
251 |
# See \"Authorization Queries\" in sql.conf
|
251 |
# See \"Authorization Queries\" in sql.conf
|
252 |
".$this->_writeModule($this->_sections['authorize']->sql, 'sql')."
|
252 |
".$this->_writeModule($this->_sections['authorize']->sql, 'sql')."
|
253 |
".$this->_writeModule($this->_sections['authorize']->noresetcounter, 'noresetcounter')."
|
253 |
".$this->_writeModule($this->_sections['authorize']->noresetcounter, 'noresetcounter')."
|
254 |
".$this->_writeModule($this->_sections['authorize']->dailycounter, 'dailycounter')."
|
254 |
".$this->_writeModule($this->_sections['authorize']->dailycounter, 'dailycounter')."
|
255 |
".$this->_writeModule($this->_sections['authorize']->monthlycounter, 'monthlycounter')."
|
255 |
".$this->_writeModule($this->_sections['authorize']->monthlycounter, 'monthlycounter')."
|
256 |
#
|
256 |
#
|
257 |
# If you are using /etc/smbpasswd, and are also doing
|
257 |
# If you are using /etc/smbpasswd, and are also doing
|
258 |
# mschap authentication, the un-comment this line, and
|
258 |
# mschap authentication, the un-comment this line, and
|
259 |
# configure the 'etc_smbpasswd' module, above.
|
259 |
# configure the 'etc_smbpasswd' module, above.
|
260 |
".$this->_writeModule($this->_sections['authorize']->etc_smbpasswd, '# etc_smbpasswd')."
|
260 |
".$this->_writeModule($this->_sections['authorize']->etc_smbpasswd, '# etc_smbpasswd')."
|
261 |
#
|
261 |
#
|
262 |
# The ldap module will set Auth-Type to LDAP if it has not
|
262 |
# The ldap module will set Auth-Type to LDAP if it has not
|
263 |
# already been set
|
263 |
# already been set
|
264 |
".$this->_writeModule($this->_sections['authorize']->ldap, '# ldap {
|
264 |
".$this->_writeModule($this->_sections['authorize']->ldap, '# ldap {
|
265 |
# fail = 1
|
265 |
# fail = 1
|
266 |
# }')."
|
266 |
# }')."
|
267 |
#
|
267 |
#
|
268 |
# Enforce daily limits on time spent logged in.
|
268 |
# Enforce daily limits on time spent logged in.
|
269 |
".$this->_writeModule($this->_sections['authorize']->daily, '# daily')."
|
269 |
".$this->_writeModule($this->_sections['authorize']->daily, '# daily')."
|
270 |
#
|
270 |
#
|
271 |
# Use the checkval modulel
|
271 |
# Use the checkval modulel
|
Line 427... |
Line 427... |
427 |
# For Simultaneous-Use tracking.
|
427 |
# For Simultaneous-Use tracking.
|
428 |
#
|
428 |
#
|
429 |
# Due to packet losses in the network, the data here
|
429 |
# Due to packet losses in the network, the data here
|
430 |
# may be incorrect. There is little we can do about it.
|
430 |
# may be incorrect. There is little we can do about it.
|
431 |
".$this->_writeModule($this->_sections['accounting']->radutmp, '# radutmp')."
|
431 |
".$this->_writeModule($this->_sections['accounting']->radutmp, '# radutmp')."
|
432 |
".$this->_writeModule($this->_sections['accounting']->sradutmp, 'sradutmp')."
|
432 |
".$this->_writeModule($this->_sections['accounting']->sradutmp, '# sradutmp')."
|
433 |
|
433 |
|
434 |
# Return an address to the IP Pool when we see a stop record.
|
434 |
# Return an address to the IP Pool when we see a stop record.
|
435 |
".$this->_writeModule($this->_sections['accounting']->main_pool, '# main_pool')."
|
435 |
".$this->_writeModule($this->_sections['accounting']->main_pool, '# main_pool')."
|
436 |
|
436 |
|
437 |
#
|
437 |
#
|
438 |
# Log traffic to an SQL database.
|
438 |
# Log traffic to an SQL database.
|
439 |
#
|
439 |
#
|
440 |
# See \"Accounting queries\" in sql.conf
|
440 |
# See \"Accounting queries\" in sql.conf
|
441 |
".$this->_writeModule($this->_sections['accounting']->sql, 'sql')."
|
441 |
".$this->_writeModule($this->_sections['accounting']->sql, 'sql')."
|
442 |
|
442 |
|
443 |
#
|
443 |
#
|
444 |
# Instead of sending the query to the SQL server,
|
444 |
# Instead of sending the query to the SQL server,
|
445 |
# write it into a log file.
|
445 |
# write it into a log file.
|
446 |
#
|
446 |
#
|
Line 468... |
Line 468... |
468 |
session {
|
468 |
session {
|
469 |
".$this->_writeModule($this->_sections['session']->radutmp, '# radutmp')."
|
469 |
".$this->_writeModule($this->_sections['session']->radutmp, '# radutmp')."
|
470 |
|
470 |
|
471 |
#
|
471 |
#
|
472 |
# See \"Simultaneous Use Checking Queries\" in sql.conf
|
472 |
# See \"Simultaneous Use Checking Queries\" in sql.conf
|
473 |
".$this->_writeModule($this->_sections['session']->sql, '# sql')."
|
473 |
".$this->_writeModule($this->_sections['session']->sql, '# sql')."
|
474 |
}
|
474 |
}
|
475 |
|
475 |
|
476 |
|
476 |
|
477 |
# Post-Authentication
|
477 |
# Post-Authentication
|
478 |
# Once we KNOW that the user has been authenticated, there are
|
478 |
# Once we KNOW that the user has been authenticated, there are
|
Line 516... |
Line 516... |
516 |
# 'edir_account_policy_check = yes' in the ldap module configuration
|
516 |
# 'edir_account_policy_check = yes' in the ldap module configuration
|
517 |
#
|
517 |
#
|
518 |
Post-Auth-Type REJECT {
|
518 |
Post-Auth-Type REJECT {
|
519 |
attr_filter.access_reject
|
519 |
attr_filter.access_reject
|
520 |
}
|
520 |
}
|
521 |
".$this->_writeModule($this->_sections['post-auth']->files, '# files')."
|
521 |
".$this->_writeModule($this->_sections['post-auth']->files, '# files')."
|
522 |
}
|
522 |
}
|
523 |
|
523 |
|
524 |
#
|
524 |
#
|
525 |
# When the server decides to proxy a request to a home server,
|
525 |
# When the server decides to proxy a request to a home server,
|
526 |
# the proxied request is first passed through the pre-proxy
|
526 |
# the proxied request is first passed through the pre-proxy
|