PHP Classes

File: radius_debug.cmd

Recommend this page to a friend!
  Classes of André Liechti   multiOTP PHP class   radius_debug.cmd   Download  
File: radius_debug.cmd
Role: Auxiliary data
Content type: text/plain
Description: Release
Class: multiOTP PHP class
Authenticate and manage OTP strong user tokens
Author: By
Last change: New release
ENH: LDAP filter can be customized using SetLdapFilter() method ({cn_identifier}, {username}, and {groups_filtering} placeholders are supported)
ENH: Full PHP 8.x support (tested with 8.2.1 and 8.1.14), with backward compatibility support (7.x, >=5.4.x)
ENH: Enhanced AD/LDAP paging support
ENH: Embedded Windows nginx edition updated to version 1.22.1
ENH: Embedded Windows PHP edition updated to version 8.2.0
ENH: PHP 8.2.x deprecated code cleaned (nullable trim, dynamic properties, PostgreSQL command without connection argument)
ENH: Enhanced sms library (MultiotpSms), new eCall API implementation, new ASPSMS API implementation
ENH: Better MySQL error handling
ENH: Better PostgreSQL error handling
New release
New release
ENH: It's now possible to define a special AD/LDAP group to attribute "Without2FA" token to specific users
ENH: Default username and password are not displayed anymore if default password has been changed
Enhanced multiOTP Credential Provider support
New release
FIX: Better special characters support in username and password
ENH: The locked accounts list now also list the temporary delayed accounts
ENH: Accounts with Without2FA tokens can now also be stored in cache
New release
ENH: Command -iswithout2fa added as a CLI option (to check if a token is needed)
ENH: Enhanced multiOTP Credential Provider
ENH: Additional CLI option -nt-key-only added
New release
FIX: Issue with /run/php when a Docker container is restarted
FIX: {MultiOtpVersion} is now correctly replaced in scratchtemplate.html
ENH: {MultiOtpDisplayName} tag (AD/LDAP DisplayName) can be used in templates
FIX: User account containing octal encoded ISO characters are now also converted to UTF
New release
FIX: Set specific flags to run Perl scripts from FreeRADIUS
FIX: User account containing special ISO characters are now also converted to UTF
ENH: New Hyper-V and OVA appliances available (version 011, based on Debian 11)
ENH: Scratchlist can be generated from the Web GUI
Date: 6 months ago
Size: 6,017 bytes


Class file image Download
@ECHO OFF REM ************************************************************ REM @file radius_debug.cmd REM @brief Script to launch the debug version of the radius service. REM REM multiOTP - Strong two-factor authentication PHP class package REM https://www\ REM REM Windows batch file for Windows 2K/XP/2003/7/2008/8/2012/10 REM REM @author Andre Liechti, SysCo systemes de communication sa, <> REM @version REM @date 2023-01-19 REM @since 2014-04-22 REM @copyright (c) 2014-2023 SysCo systemes de communication sa REM @copyright GNU Lesser General Public License REM REM REM Description REM REM radius_debug is a small script that will launch the debug version REM of the radius server of multiOTP under Windows using freeRADIUS. REM ( REM REM REM Usage REM REM The script must be launched in the top folder of multiOTP. REM Default ports are 1812 and 1813 REM REM REM Licence REM REM Copyright (c) 2014-2023 SysCo systemes de communication sa REM SysCo (tm) is a trademark of SysCo systemes de communication sa REM ( REM All rights reserved. REM REM This file is part of the multiOTP project. REM REM REM Users feedbacks and comments REM REM REM Change Log REM REM 2020-12-11 SysCo/al Do an automatic "Run as administrator" if needed REM 2016-11-04 SysCo/al Unified file header REM 2014-04-22 SysCo/al Initial release REM REM ************************************************************ NET SESSION >NUL 2>&1 IF NOT %ERRORLEVEL% == 0 ( ECHO WARNING! Please run this script as an administrator, otherwise it will fail. ECHO Elevating privileges... REM PING > NUL 2>&1 CD /d %~dp0 MSHTA "javascript: var shell = new ActiveXObject('shell.application'); shell.ShellExecute('%~nx0', '', '', 'runas', 1);close();" EXIT REM PAUSE REM EXIT /B 1 ) :NoWarning SET _radius_secret=multiotpsecret REM Ports variables are not overwritten if already defined IF "%_auth_port%"=="" SET _auth_port=1812 IF "%_account_port%"=="" SET _account_port=1813 REM Define the service tag and the service name SET _service_tag=multiOTPradius SET _service_name=multiOTP Radius server REM Ports and service information can be overwritten if passing parameters IF NOT "%1"=="" SET _auth_port=%1 IF NOT "%2"=="" SET _account_port=%2 IF NOT "%3"=="" SET _service_tag=%3 IF NOT "%4"=="" SET _service_name=%4 IF NOT "%5"=="" SET _service_name=%_service_name% %5 IF NOT "%6"=="" SET _service_name=%_service_name% %6 IF NOT "%7"=="" SET _service_name=%_service_name% %7 IF NOT "%8"=="" SET _service_name=%_service_name% %8 IF NOT "%9"=="" SET _service_name=%_service_name% %9 REM Define the current folder SET _folder=%~d0%~p0 SET _radius_folder=%~d0%~p0 SET _tools_folder=%~d0%~p0 IF NOT EXIST %_radius_folder%radius SET _radius_folder=%~d0%~p0..\ IF NOT EXIST %_tools_folder%tools SET _tools_folder=%~d0%~p0..\ REM Create the multiotp module for the radius server ECHO # Exec module instance for multiOTP (https://www\>%_radius_folder%radius\etc\raddb\modules\multiotp ECHO exec multiotp {>>%_radius_folder%radius\etc\raddb\modules\multiotp ECHO wait = yes>>%_radius_folder%radius\etc\raddb\modules\multiotp ECHO input_pairs = request>>%_radius_folder%radius\etc\raddb\modules\multiotp ECHO output_pairs = reply>>%_radius_folder%radius\etc\raddb\modules\multiotp ECHO program = "../../multiotp.exe -base-dir=%_folder% -keep-local -log -debug **"%%{User-Name}**" **"%%{User-Password}**" -src=%%{Packet-Src-IP-Address} -chap-challenge=%%{CHAP-Challenge} -chap-password=%%{CHAP-Password} -ms-chap-challenge=%%{MS-CHAP-Challenge} -ms-chap-response=%%{MS-CHAP-Response} -ms-chap2-response=%%{MS-CHAP2-Response}">>%_radius_folder%radius\etc\raddb\modules\multiotp ECHO shell_escape = yes>>%_radius_folder%radius\etc\raddb\modules\multiotp ECHO }>>%_radius_folder%radius\etc\raddb\modules\multiotp REM Sorry, this is an *ugly* trick to change "\" to "/" with the FART tool %_tools_folder%tools\FART "%_radius_folder%radius\etc\raddb\modules\multiotp" "\\" "!!!/!!!" >NUL %_tools_folder%tools\FART --remove "%_radius_folder%radius\etc\raddb\modules\multiotp" "!!!" >NUL %_tools_folder%tools\FART "%_radius_folder%radius\etc\raddb\modules\multiotp" "**" "\\" >NUL REM Customize the etc/raddb/radiusd.conf configuration file COPY "%_radius_folder%radius\etc\raddb\radiusd.template.conf" "%_radius_folder%radius\etc\raddb\radiusd.conf" /Y >NUL %_tools_folder%tools\FART "%_radius_folder%radius\etc\raddb\radiusd.conf" "_auth_port" "%_auth_port%" >NUL %_tools_folder%tools\FART "%_radius_folder%radius\etc\raddb\radiusd.conf" "_account_port" "%_account_port%" >NUL REM Customize the etc/raddb/clients.conf configuration file COPY "%_radius_folder%radius\etc\raddb\clients.template.conf" "%_radius_folder%radius\etc\raddb\clients.conf" /Y >NUL %_tools_folder%tools\FART "%_radius_folder%radius\etc\raddb\clients.conf" "_radius_secret" "%_radius_secret%" >NUL REM Basic firewall rules for the radius server netsh firewall delete allowedprogram "%_radius_folder%radius\sbin\radiusd.exe" >NUL netsh firewall add allowedprogram "%_radius_folder%radius\sbin\radiusd.exe" "%_service_name%" ENABLE >NUL REM Enhanced firewall rules for the service netsh advfirewall firewall delete rule name="%_service_name%" >NUL netsh advfirewall firewall add rule name="%_service_name%" dir=in action=allow program="%_radius_folder%radius\sbin\radiusd.exe" enable=yes >NUL CD %_radius_folder%radius\sbin %_radius_folder%radius\sbin\radiusd.exe -X -d %_radius_folder%radius\etc\raddb REM Clean the environment variables SET _account_port= SET _auth_port= SET _folder= SET _radius_folder= SET _tools_folder= SET _radius_secret= SET _service_name= SET _service_tag=