Alan DeKok wrote:
Mike Jakubik <mikej@rogers.com> wrote:If there is a way to accomplish this outside of SQL, im quite open to suggestions. As long as i can refer to the groups which are in SQL. Basically, i need to be able to restrict certain user groups from dialing certain numbers.Use rlm_passwd to map many dial-in numbers to one dial-in group. Then, do: DEFAULT SQL-Group == "foo", Dial-in-group == "bar", Auth-Type := Reject And repeat for the combinations of SQL groups & dial-in groups.
Uhm, in that case cant i just specify called-station-id in the user file? In any case, is SQL-Group a valid attribute? I cant find it in the documentation. I tried a simple :
DEFAULT SQL-Group == "restricted",
Called-Station-Id == "number",
Auth-Type := Reject
Restarted radius, and dialed "number", nothing happened, i logged in
just fine.