RADIUS and mgetty

Gert Doering (gert@greenie.muc.de)
Sat, 7 Aug 1999 12:48:29 +0200
Messages sorted by:[ date ][ thread ][ subject ][ author ]
Hi,

On Thu, Aug 05, 1999 at 11:48:28AM +0200, Frank D. Cringle wrote:
> The usual case is that authentication and accounting are done by the
> program that mgetty starts, after it has accepted the call.  For
> instance, if the caller wants to talk PPP, mgetty hands the line over
> to pppd and it is pppd that needs to talk to your radius server.
> Similarly for /bin/login if the caller wants a shell-prompt.  There is
> no need for mgetty to get involved in this.  Indeed, in the case of
> PPP, it doesn't make sense.

I agree.  Better worded than my response :)

> The case of authenticating on the phone number is interesting.  We
> have a terminal server[*] that can send radius queries based on
> calling number and called extension, before it even picks up the call.
> The answers influence whether the call is picked up and if so what
> services are offered.  It seems to me that that should be done by an
> external program called by mgetty, rather than built in.  If this
> program gives a positive response (pick up the call), it should also
> be able to tell mgetty how to handle the call - e.g., start pppd with
> a particular set of options.

Indeed.  This can be done by "cnd-program" - mgetty runs this to help
deciding "shall I pick up this incoming call".

gert
-- 
Gert Doering
Mobile communications ... right now writing from *Berlin* :-)) 
... mobile phone: +49 177 2160221 ... or mail me:  gert@greenie.muc.de