Ivan Kalik escribió:
The situation that you exposed logically works. But I can't authorize all users in spite of having a valid certificate, because the public PKI....... what? You can authenticate some users (which) - what's the problem with the others?
Any problem nowThen, users file: ....... "user1" ......... "user2" ......... DEFAULT Auth-Type := Reject .........works, but if I put "userX" into another file and make an include, don't. In this situation, If I append an empty cleartext-password, works, with fall-through = noThat sounds like a parser issue. But there is no real need to use another file.
It's true, no real need.
On the other side, I put Fall-Through attribute to tell radius that should stop when a user matches users file, but looks isn't necessary.Yes. users file will not be read any furter unless the matched entry contains Fall-Through = Yes. You could say that Fall-Through = No is assumed.
I've understood. Thanks