Mercurial > hg > fD-testbed

annotate conf/radpxy.eap.testbed.aaa/freeradius/sql.conf @ 11:44f87917c579

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Added a RADIUS proxy using freeradius in the eap testbed
author Sebastien Decugis <sdecugis@nict.go.jp>
date Thu, 16 Sep 2010 14:23:42 +0900
parents
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
11
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
1 # -*- text -*-
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
2 ##
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
3 ## sql.conf -- SQL modules
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
4 ##
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
5 ## $Id: sql.conf,v 1.61 2007/12/31 03:31:16 aland Exp $
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
6
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
7 ######################################################################
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
8 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
9 # Configuration for the SQL module
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
10 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
11 # The database schemas and queries are located in subdirectories:
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
12 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
13 # sql/DB/schema.sql Schema
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
14 # sql/DB/dialup.conf Basic dialup (including policy) queries
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
15 # sql/DB/counter.conf counter
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
16 # sql/DB/ippool.conf IP Pools in SQL
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
17 # sql/DB/ippool.sql schema for IP pools.
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
18 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
19 # Where "DB" is mysql, mssql, oracle, or postgresql.
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
20 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
21
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
22 sql {
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
23 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
24 # Set the database to one of:
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
25 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
26 # mysql, mssql, oracle, postgresql
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
27 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
28 database = "mysql"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
29
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
30 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
31 # Which FreeRADIUS driver to use.
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
32 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
33 driver = "rlm_sql_${database}"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
34
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
35 # Connection info:
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
36 server = "localhost"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
37 login = "radius"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
38 password = "radpass"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
39
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
40 # Database table configuration for everything except Oracle
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
41 radius_db = "radius"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
42 # If you are using Oracle then use this instead
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
43 # radius_db = "(DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=localhost)(PORT=1521))(CONNECT_DATA=(SID=your_sid)))"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
44
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
45 # If you want both stop and start records logged to the
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
46 # same SQL table, leave this as is. If you want them in
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
47 # different tables, put the start table in acct_table1
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
48 # and stop table in acct_table2
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
49 acct_table1 = "radacct"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
50 acct_table2 = "radacct"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
51
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
52 # Allow for storing data after authentication
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
53 postauth_table = "radpostauth"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
54
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
55 authcheck_table = "radcheck"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
56 authreply_table = "radreply"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
57
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
58 groupcheck_table = "radgroupcheck"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
59 groupreply_table = "radgroupreply"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
60
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
61 # Table to keep group info
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
62 usergroup_table = "radusergroup"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
63
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
64 # If set to 'yes' (default) we read the group tables
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
65 # If set to 'no' the user MUST have Fall-Through = Yes in the radreply table
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
66 # read_groups = yes
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
67
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
68 # Remove stale session if checkrad does not see a double login
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
69 deletestalesessions = yes
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
70
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
71 # Print all SQL statements when in debug mode (-x)
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
72 sqltrace = no
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
73 sqltracefile = ${logdir}/sqltrace.sql
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
74
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
75 # number of sql connections to make to server
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
76 num_sql_socks = 5
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
77
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
78 # number of seconds to dely retrying on a failed database
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
79 # connection (per_socket)
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
80 connect_failure_retry_delay = 60
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
81
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
82 # Set to 'yes' to read radius clients from the database ('nas' table)
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
83 # Clients will ONLY be read on server startup. For performance
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
84 # and security reasons, finding clients via SQL queries CANNOT
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
85 # be done "live" while the server is running.
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
86 #
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
87 #readclients = yes
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
88
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
89 # Table to keep radius client info
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
90 nas_table = "nas"
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
91
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
92 # Read driver-specific configuration
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
93 $INCLUDE sql/${database}/dialup.conf
44f87917c579 Added a RADIUS proxy using freeradius in the eap testbed
Sebastien Decugis <sdecugis@nict.go.jp>
parents:
diff changeset
94 }
"Welcome to our mercurial repository"