rlm_sradutmp

Synopsis

The sradutmp module provides a "safe" version of the radutmp module, where the sradutmp file can be globally readable.

Processing Sections

Any.

Processing Sections

accounting

When listed in the accounting section, the sradutmp module updates the sradutmp file.

Return codes

noop The module did nothing. The input packet did not contain the information required by the sradutmp file.

fail The module was unable to expand the filename or to open the file.

ok The module successfully wrote the user’s login record to the file.

checksimul

When listed in the checksimul section, the sradutmp module checks the sradutmp file to see if the user has already logged in.

Return codes

fail The module was unable to expand the filename or to open the file.

ok The user is allowed to log in.

noop The username directive was empty.

Expansions

None.

Directives

callerid
Syntax

callerid = boolean

Default

no

Description

If set, the Calling-Station-Id will be stored in the user’s record.

case_sensitive
Syntax

case_sensitive = boolean

Default

yes

Description

Treat the user’s login name as case sensitive. If set to no, then the strings Name, NaMe, NAME, and name are all identical.

It is not recommended to set this directive to no.

check_with_nas
Syntax

check_with_nas = boolean

Default

yes

Description

The server normally runs checkrad when it determines that the user is trying to login multiple times. The checkrad script asks the NAS about the previous login sessions, as an accounting "stop" packet might have been lost.

When this directive is set to no, the server will not run checkrad and will treat the contents of sradumpt as being definitive.

filename
Syntax

filename = string

Default

${logdir}/sradutmp

Description

The name of the sradutmp file. This file should not be rotated.

perm
Syntax

perm = integer

Default

0644

Description

The Unix-style permissions for the log file.

The sradutmp file contains private information about users. It is recommended to keep the file permissions as restrictive as possible.

username
Syntax

username = string

Default

%{User-Name}

Description

The field in the request that is used as the key for the sradutmp entries.

Note
The size of the field in the utmp data structure is small, usually around 32 characters. A better key may be %\{Stripped-User-Name:-%{User-Name}}