3.54. <AuthBy SQLRADIUS> Previous topic Parent topic Child topic Next topic

This clause proxies requests to a target RADIUS server. The target host is determined by a table lookup in an SQL database. This allows the easy management of large numbers of downstream RADIUS servers, such as in a wholesale ISP. It inherits from both common SQL module and <AuthBy RADIUS>.
<AuthBy SQLRADIUS> runs the HostSelect query to determine the details of the target RADIUS server until either an acknowledgment is received from the target or Num-Hosts is exceeded. This permits fallback radius servers to be configured.
HostSelect can be configured to select the target RADIUS server based on any attribute in the incoming request. The default is the user's Realm, but other possibilities, such as Called-Station-Id may be more useful for your organisation.
There are example SQL table definitions in the /goodies/*.sql scripts. These tables work with the default HostSelect allowing the selection of a target host primary and secondary based on Realm.
If HostSelect fails to select any rows, <AuthBy SQLRADIUS> attempts to proxy according any <Host xxxxxx> clauses contained within the <AuthBy SQLRADIUS> clause. For more information, see Section 3.37. <Host xxxxxx> within <AuthBy RADIUS>. This permits unknown realms to be proxied to a catchall target server.
<AuthBy SQLRADIUS> understands the same parameters as <AuthBy RADIUS>. For more information, see Section 3.36. <AuthBy RADIUS>. It supports also all the common SQL configuration parameters. For more information about the SQL configuration parameters, see Section 3.6. SQL configuration.