Map LDAP Attribute to RADIUS Attribute
Paul Asadoorian
paul at pauldotcom.com
Wed Jul 19 20:56:42 CEST 2006
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Thanks Phil!
That seemed to do the trick, I now get:
Sending Access-Accept of id 141 to 127.0.0.1 port 32908
Aruba-User-Role = "student"
Thanks to all for the assistance.
Paul
On Jul 19, 2006, at 12:13 PM, Phil Mayers wrote:
> Paul Asadoorian wrote:
>> The RADIUS client is actually an Aruba wireless controller. It
>> had an attribute already defined called "User-Category". I also
>> checked the
>
> Ok, you should get Aruba's dictionary, or ask them what their
> enterprise number + the attribute number is. That attribute
> certainly doesn't seem to be in the FreeRadius dictionary.aruba
>
> Maybe Aruba-User-Role?
>
>> dictionary file for "User-Category" and this is what I found:
>> # grep User-Category *
>> dictionary.freeradius.internal:ATTRIBUTE User-
>> Category 1029 string
>
> Ah, ok. That's a FreeRadius internal attribute. It'll never appear
> on the wire, it's intended for use inside the server e.g. as a
> classification/matching attribute.
>
> You'll have to name whatever Aruba's attribute is differently.
> - List info/subscribe/unsubscribe? See http://www.freeradius.org/
> list/users.html
>
- --
Paul Asadoorian
Email: paul at pauldotcom.com
Web: http://pauldotcom.com
IRC: #pauldotcom | irc.freenode.net
Fingerprint: 2693 0204 8497 2E5F 4853 11D5 1153 6151 487F E094
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (Darwin)
iD8DBQFEvoBsEVNhUUh/4JQRAgEeAKDTsfYKpoStI4Y11nV18/BoUrr4YQCePO7f
bvf5ssfAkHTMvICk09aHJkQ=
=847J
-----END PGP SIGNATURE-----
More information about the Freeradius-Users
mailing list