Dynamic User Help

Alan DeKok aland at deployingradius.com
Wed Sep 9 21:30:04 CEST 2015


On Sep 9, 2015, at 1:54 PM, J Kephart <jkephart at safetynetaccess.com> wrote:
> Does this sound like something that could work?

  Yes.

>  If so, I need a bit of
> help understanding where we'd put the table query (and the construction
> of it) in whichever file it should be in (e.g.,
> sites-enabled/default?).

  Yes.  Typically in the "authorize" section.  Do an SQL lookup which matches the MAC.  If there's a NASID / port there which does NOT match the current one, reject the user.

> For me, the sticking point is where and how to put the SQL query, so I'd
> appreciate any pointers I can get.  And, too, if there's a better way of
> doing this, I'd welcome any advice!

  Just put it in the "authorize" section.

  Alan DeKok.




More information about the Freeradius-Users mailing list