Authentication via ntlm_auth with check the user group

Сергей Усов usows at pomorsu.ru
Fri Dec 9 11:11:16 CET 2011


Hi

I'm add into sites-enabled/inner-tunnel

authorize {
         ...

         if (Ldap-Group == "%{AD-Group}") {
                 ok
         }
         else {
                 reject
         }
}

It's work for peap authentification, but if I use certificate 
authentication, the module ldap do not work


08.12.2011 20:34, Alan DeKok пишет:
> Сергей Усов wrote:
>    
>> Thanks, Alan, it works.
>>
>> I have another question. Can I check the user's group for authentication
>> via TTLS?
>>      
>    Put any group checking into the "inner-tunnel" server.  That's what
> it's for.
>
>    Alan DeKok.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>    


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4108 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20111209/bea29920/attachment.bin>


More information about the Freeradius-Users mailing list