Assistance with FreeRADIUS and Windows Authentication via LDAP

tnt at kalik.net tnt at kalik.net
Mon Mar 9 22:37:08 CET 2009


>I am running FreeRADIUS version 1.1.3.

Why? Upgrade to current version.

>I'm trying to setup LDAP
>authentication for Windows users accessing our networking devices especially
>with Cisco switches and routers.  Windows authentication is working properly
>on my FreeRADIUS server, but I'm trying to figure out how to give different
>users special privilege access without providing them the enable password.
>I'd like to specify another Security group with providing them a read-only
>or special privilege mode with their Windows account.  Is this possible?

Yes. Send them priv-level Cisco AVpair. You will need add that attribute
mapping to ldap.attrmap.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list