[802.1x] FreeRADIUS OpenLDAP

Michael Schwartzkopff ms at sys4.de
Thu Jan 28 17:53:34 CET 2021


On 28.01.21 16:21, Christian VAN DER ZWAARD via Freeradius-Users wrote:
> It means FreeRADIUS does not look for the Group id in the right place.
>
> It's not a bug or anything, I just don't know how to tell FreeRADIUS to get
> the Tunnel-Private-Group-Id from the users group.
>
> Kind regards.
>
> --
> Christian VAN DER ZWAARD
>
>
> Le jeu. 28 janv. 2021 à 16:14, Alan DeKok <aland at deployingradius.com> a
> écrit :
>
>> On Jan 28, 2021, at 10:06 AM, Christian VAN DER ZWAARD via
>> Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
>>> I'm actually trying to set up network authentication with FreeRADIUS and
>>> OpenLDAP.
>>>
>>> I'm trying to provide a VLAN depending on the users group. It actually
>>> works if I set the *Tunnel-Private-Group-Id* attribute on my user but I'd
>>> love to set a Group ID on my group object in LDAP only.
>>> FreeRADIUS won't take the Group ID when it's set in
>> *Tunnel-Private-Group-Id*
>>> attribute on the group object.
>>   What does that mean?
>>
>>> Do you have any idea how I can get this to work?
>>   If only there was some kind of debug output which let you know *exactly*
>> what was going on...
>>
>>   Alan DeKok.
>>
>>
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html



Hi,


not exactly your use case, but perhaps you find inspiration in my blog:

https://blog.sys4.de/strongswan-vpn-based-on-groups-en.html


Mit freundlichen Grüßen,

-- 

[*] sys4 AG
 
https://sys4.de, +49 (89) 30 90 46 64
Schleißheimer Straße 26/MG,80333 München
 
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief
Aufsichtsratsvorsitzender: Florian Kirstein


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 228 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20210128/b496274b/attachment-0001.sig>


More information about the Freeradius-Users mailing list