Home > Blogosphere > Radius with Case Sensitive for Single Sign On (SSO) User Authentication

Radius with Case Sensitive for Single Sign On (SSO) User Authentication


Bermula dari laporan salah seorang Mahasiswa yang bertanya bahwa akun SSO dapat digunakan di beberapa tempat/device pada saat bersamaan, kemudian dilakukan cek n ricek oleh para admin yg mengelola aplikasi SSO, rupanya memang benar setelah diamati ada beberapa user yang login menggunakan UserName dan password yang sama namun tidak CaseSensitif, setelah dilakukan penelusuran oleh Admins, rupanya hal ini disebabkan aplikasi third party Radius yang digunakan rupanya belum mengaktifkan fitur CaseSensitif User, ya sudah saya minta mereka langsung untuk mengaktifkan fitur tersebut, dengan merubah beberapa parameter konfigurasi berikut;

        #######################################################################
        # Use these for case sensitive usernames.
#       authorize_check_query = "SELECT id, username, attribute, value, op \
#         FROM ${authcheck_table} \
#         WHERE username = BINARY '%{SQL-User-Name}' \
#         ORDER BY id"
#       authorize_reply_query = "SELECT id, username, attribute, value, op \
#         FROM ${authreply_table} \
#         WHERE username = BINARY '%{SQL-User-Name}' \
#         ORDER BY id"

        # The default queries are case insensitive. (for compatibility with
        # older versions of FreeRADIUS)
        authorize_check_query = "SELECT id, username, attribute, value, op \
          FROM ${authcheck_table} \
          WHERE username = '%{SQL-User-Name}' \
          ORDER BY id"
        authorize_reply_query = "SELECT id, username, attribute, value, op \
          FROM ${authreply_table} \
          WHERE username = '%{SQL-User-Name}' \
          ORDER BY id"

        # Use these for case sensitive usernames.
#       group_membership_query = "SELECT groupname \
#         FROM ${usergroup_table} \
#         WHERE username = BINARY '%{SQL-User-Name}' \
#         ORDER BY priority"

Caranya tinggal diremove saja tanda # (tagar) agar fitur case sensitif nya bisa jalan.

  1. No comments yet.
  1. No trackbacks yet.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: