Limit access of a SSID to a certain LDAP group

tnt at tnt at
Wed Jan 14 14:16:04 CET 2009

>I need to have different WLANs for different Users who are in LDAP
>The user of group A should be able to use WLAN A but not WLAN B and so
>How on earth do I configure this?

Where is SSID in the request? Called-Station-Id? NAS-Identifier?

DEFAULT   Ldap-Group == whatever, regex check on the attribute which
holds SSID

DEFAULT   Ldap-Group == another, same for second SSID


DEFAULT   Auth-Type := Reject (force reject on those that don't match)

You can also return group/SSID combination specific attributes there.

Ivan Kalik
Kalik Informatika ISP

More information about the Freeradius-Users mailing list