same user on different service

tnt at kalik.net tnt at kalik.net
Fri Mar 27 15:40:33 CET 2009


>It's work!! , but now have a problem from cisco.

Yes. It's not sending Service-Type for console logins:

>rad_recv: Access-Request packet from host 192.168.10.100:1812, id=19,
>length=79
>        NAS-IP-Address = 192.168.10.100
>        NAS-Port = 1
>        NAS-Port-Type = Virtual
>        User-Name = "user100"
>        Calling-Station-Id = "192.168.10.120"
>        User-Password = "pass"

Ok. Change over things in users file. Put framed entry first:

usr100            Auth-Type := Local, User-Password := "pass",
Service-Type == Framed-User
               Called-Station-Id == "1133",
               Service-Type = Framed-User,
               Framed-Protocol = PPP,
               Cisco-AVPair ="ip:addr-pool=dynpool"

than add second entry without Service-Type on check line:

usr100            User-Password := "pass"
               Service-Type = NAS-Prompt-User,
               cisco-avpair = "shell:priv-lvl=0"

DEFAULT entries should stay the same.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list