Concatenation of authentication

Alan DeKok aland at
Wed May 7 13:14:02 CEST 2014

Jérôme MATER wrote:
> I have made both configurations and it works separately. However, the
> goal is :
> 1) I want to authenticate users with Windows Radius server and
> authentication with token
> 2) If authentication 1 failed, then user tries to connect on the SQL
> database automatically.

  That's not really how RADIUS works.  If the user is rejected, you
can't turn that into an accept.

> I've tried with post-auth section, post-proxy section...
> Is it possible ? How can I do that.

  You can't.

  Instead, determine which users should use SQL, and which users should
authenticate via the Windows RADIUS server.  Then, make them do that.

  Alan DeKok.

More information about the Freeradius-Users mailing list