Username/Host authorization

A.L.M.Buxey at lboro.ac.uk A.L.M.Buxey at lboro.ac.uk
Mon Jun 24 16:26:46 CEST 2013


Hi,

>    I'm now sure that the best way for us is MAC Address filtering.

thats a way of doing the 'host' part. the user can then be authenticated
by an EAP method.  

ie authorization stage can check the calling-station-id (MAC address) and,
if not known, just reject. then, if known carry on to the user authentication
by 802.1X

as already said, you have to know what you want and the technologies available

alan


More information about the Freeradius-Users mailing list