LDAP Config Clarification

tnt at kalik.net tnt at kalik.net
Tue Mar 17 20:05:34 CET 2009


>> Remove those entries in users file. They are bypassing password checking.
>> If you want to accept only some ldap groups use unlang. Something like:
>>
>> if(Ldap-Group == something || Ldap-Group == something_else) {
>>      ok
>> }
>> else {
>>      update control {
>>           Auth-Type := Reject
>>      }
>> }
>
>Yeah.. that may be a problem.  Does freeradius 1.1.3 support unlang?
>This is a RHEL 5.3 install...  I'm not aware of a trustable source for
>2.x RPMs ...
>

1.1.3 doesn't support unlang. You need 2.x.

http://wiki.freeradius.org/Red_Hat_FAQ

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list