Using freeradius and 802.1x for dynamic VLAN

Alan DeKok aland at deployingradius.com
Tue Oct 16 17:26:02 CEST 2007


lvizcardof at unsa.edu.pe wrote:
...
> What certificate i shoud use, so that valid the:
> carlos     User-Password == "carlos"
>          Service-Type = Framed-User,
>          Tunnel-Type = VLAN,
>          Tunnel-Medium-Type = IEEE-802,
>          Tunnel-Private-Group-Id = 2
> 
> and if the user carlos access to the vlan 2, he can access, otherwise he
> doesn't access.

  RADIUS doesn't work that way.  The NAS doesn't tell the server what
VLAN the user is in, because the user is NOT in a VLAN until they have
been authenticated.

  Alan DeKok.



More information about the Freeradius-Users mailing list