Authentication and Authorization

Alex Gregory alex at c2company.com
Tue Oct 7 18:17:04 CEST 2014


I apologize… should have tried it first.  Not allowed there.  Looks like its done in the authorize section.  

Alex


On Oct 7, 2014, at 9:10 AM, Alex Gregory <alex at c2company.com> wrote:

> I assume I do this in the pre-proxy section of the default site?  
> 
> Something like:
> 
> pre-proxy {
> ldap 
> if (notfound) {
> reject
> }
> }
> 
> Thanks again for the help.  You guys have definitely gotten me past the last toughest 10% of my configuration dilemmas.  Its much appreciated considering I assume you are all doing this in your free time.
> 
> Thanks,
> 
> Alex
> 
> 
> On Oct 7, 2014, at 7:42 AM, Alan DeKok <aland at deployingradius.com> wrote:
> 
>> Alex Gregory wrote:
>>> What might I need it to do to stop processing if a user is not found?
>> 
>> $ man unlang
>> 
>> You can check the return code of a module.
>> 
>>> (3)   [ldap] = notfound
>> 
>> Change:
>> 
>> 	ldap
>> 
>> To:
>> 
>> 	ldap
>> 	if (notfound) {
>> 		reject
>> 	}
>> 
>> Alan DeKok.
>> -
>> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> 
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html



More information about the Freeradius-Users mailing list