design question

Arran Cudbard-Bell a.cudbardb at freeradius.org
Mon Mar 4 23:28:52 CET 2013


On 4 Mar 2013, at 15:56, Matt Zagrabelny <mzagrabe at d.umn.edu> wrote:

> Greetings,
> 
> I am configuring a general purpose RADIUS server that any number of
> clients can connect to for authn - it uses a PostgreSQL DB as the
> backend datastore. I would also like to setup a secondary RADIUS
> server listening on a different port (ie. 1814) and use the same Pg DB
> as a backend, but use a "restricted" view as the "users" table, then
> configure devices (certain network gear) that wish to only allow users
> in the "restricted" view to use that secondary RADIUS server and
> corresponding port.

Um, ok, why?

You know SQL supports groups right? and that a group matching can be conditional on attributes in the request? and that you can add aditional config items to client definitions to mark them as a special devices?

-Arran


More information about the Freeradius-Users mailing list