test

Sun Directory Services 3.1 User's Guide

RADIUS Search Panel Definitions

To add a RADIUS search to Deja, define it in the Radius Search Panel section of the Deja.properties file. Remote User searches are declared in the RADIUS_RU_SEARCH definition, and Remote Access Server searches are defined in the RADIUS_RAS_SEARCH definition. Each search is then defined on a separate line. A search definition consists of the search name (for example, s_user), the label that appears in the Search Type option button (for example, RADIUS_RU_SEARCH_USER_LABEL), and the search definition (for example, (& (objectclass=remoteuser)(uid={$uid;RADIUS_RU_UID_ATTR_LABEL$})) ).


RADIUS_COMPLEX_SEARCH_LIST

Contains a list of the attributes and header labels for the complex search results table. By default the cn, iphostnumber and uid attributes are listed.

Adding a RADIUS Remote Access Server Search

To add a RADIUS Remote Access Server search for the mail attribute.

  1. Declare the search definition in the RADIUS_RAS_SEARCH line:


    RADIUS_RAS_SEARCH=s_name;RADIUS_RAS_SEARCH_NAME_LABEL,
s_addr;RADIUS_RAS_SEARCH_IPADDR_LABEL, s_mail;Search by Email

    The name for the new search is s_mail, and the label that appears in the Search Type option button is Search by Email.

  2. Define the search:


    RADIUS_RAS_FILTER.s_mail=
(& (objectclass=nas) (uid={$uid;Email;string$}) )

    The expression {$uid;Email;string$} tells Deja that for this search, the user input is a text string (string), the label to appear by the text field is Email (Email), and that the search text string is a user id (uid).

  3. Define the headings for the search results table:


    RADIUS_RAS_LIST.s_mail= cn;RADIUS_RAS_CN_ATTR_LABEL, uid;Email

    If you do not specify a RADIUS_RAS_LIST for the search, the default headings are used (RADIUS_RAS_LIST.default).

  4. Close Deja and restart it.

    You search type is added to the RADIUS Remote Access Server Search panel.

    Example A-7 RADIUS Search Definitions

    #
# Radius SEARCH PANEL
#
# Searches defined for Remote Users
RADIUS_RU_SEARCH=s_user;RADIUS_RU_SEARCH_USER_LABEL,
s_name;RADIUS_RU_SEARCH_NAME_LABEL,
l_bl_acc;RADIUS_RU_LIST_BLOCKED_ACCOUNTS_LABEL ,
l_ppp;RADIUS_RU_LIST_PPP_USER_LABEL, l_slip;RADIUS_RU_LIST_SLIP_USER_LABEL,
l_login;RADIUS_RU_LIST_LOGIN_USER_LABEL, s_n_u;RADIUS_RU_SEARCH_NAME_UID_LABEL

# Associated filters pour Remote Users searches
RADIUS_RU_FILTER.s_user=   (&
(objectclass=remoteuser)(uid={$uid;RADIUS_RU_UID_ATTR_LABEL$}))
RADIUS_RU_FILTER.s_name=   (&
(objectclass=remoteuser)(cn={$cn;RADIUS_RU_CN_ATTR_LABEL$}))
RADIUS_RU_FILTER.l_bl_acc= (&
(objectclass=remoteuser)(radiusAuthFailedAccess>=$RADIUS_MAX_FAIL))
RADIUS_RU_FILTER.l_ppp=    (&
(objectclass=remoteuser)(radiusPppProfile=*)(radiusPppPasswd=*))
RADIUS_RU_FILTER.l_slip=   (&
(objectclass=remoteuser)(radiusSlipProfile=*)(radiusSlipPasswd=*))
RADIUS_RU_FILTER.l_login=  (&
(objectclass=remoteuser)(radiusLoginProfile=*)(radiusLoginPasswd=*))
RADIUS_RU_FILTER.s_n_u=    (&
(objectclass=remoteuser)(cn={$cn;RADIUS_RU_CN_ATTR_LABEL$})(uid={$uid;RADIUS_R
U_UID_ATTR_LABEL$}))

# Attributes to be included (listed) in the searches' results
RADIUS_RU_LIST.s_user=     cn;RADIUS_RU_CN_ATTR_LABEL,
uid;RADIUS_RU_UID_ATTR_LABEL,
framedProtocol;RADIUS_RU_FRAMEDPROTOCOL_ATTR_LABEL
RADIUS_RU_LIST.l_bl_acc=   cn;RADIUS_RU_CN_ATTR_LABEL,
uid;RADIUS_RU_UID_ATTR_LABEL,
radiusAuthFailedAccess;RADIUS_RU_RADIUSAUTHFAILEDACCESS_ATTR_LABEL
RADIUS_RU_LIST.default=    cn;RADIUS_RU_CN_ATTR_LABEL,
uid;RADIUS_RU_UID_ATTR_LABEL

# Searches defined for RASes (Remote Access Servers)
RADIUS_RAS_SEARCH=s_name;RADIUS_RAS_SEARCH_NAME_LABEL,
s_addr;RADIUS_RAS_SEARCH_IPADDR_LABEL

# Associated filters pour NAS searches
RADIUS_RAS_FILTER.s_name=  (&
(objectclass=NAS)(cn={$cn;RADIUS_RAS_CN_ATTR_LABEL$}))
RADIUS_RAS_FILTER.s_addr=  (&
(objectclass=NAS)(iphostnumber={$iphostnumber;RADIUS_RAS_IPHOSTNUMBER_ATTR_LAB
EL;ipaddr$}))

# Attributes to be included (listed) in the searches' results
RADIUS_RAS_LIST.default=   cn;RADIUS_RAS_CN_ATTR_LABEL,
iphostnumber;RADIUS_RAS_IPHOSTNUMBER_ATTR_LABEL

# Attributes to be listed in case of a complex search
RADIUS_COMPLEX_SEARCH_LIST=cn;RADIUS_CN_ATTR_LABEL,
iphostnumber;RADIUS_RAS_IPHOSTNUMBER_ATTR_LABEL, uid;RADIUS_RU_UID_ATTR_LABEL