group authorization
Alan DeKok
aland at deployingradius.com
Tue Mar 25 20:46:27 CET 2014
Brendan Kearney wrote:
> i want to have the radiusReplyItem given in a reply when the user is a
> member of a specific group in ldap, but i seem to be having trouble with
> that. it seems that when the ldap query is made for the group
> membership, the "short" version of the uid (uid=brendan) is being used
> and not matching. the actual member "value" in the group is the "long"
> version of the uid (uid=brendan,ou=Users,dc=bpk2,dc=com). is there
> something i can do to use the "long" version?
Edit raddb/modules/ldap to use the DN you want:
filter = "(uid=%{%{Stripped-User-Name}:-%{User-Name}})"
The configuration files are editable for a reason. Edit them.
Alan DeKok.
More information about the Freeradius-Users
mailing list