I am using FreeRADIUS along with MySQL to authenticate users.
Users are saved in the radcheck table. User attributes are saved in the radreply table.
For example I have a user named Bob in the radcheck table.
username | attribute | op | value
------------------------------------------------
Bob | Cleartext-Password | := | password12
Bob has a Session-Timeout value of 60 (1 minute) in the radreply table.
username | attribute | op | value
------------------------------------------------
Bob | Session-Timeout | := | 60
Bob | Idle-Timeout | := | 60
This all works fine. My problem is that RADIUS just re-authenticates Bob straight away. I assume this is because Bob still exists in the radcheck table.
Is there a way to remove Bob from the radcheck and radreply tables after the Session-Timeout time has been reached?