<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2900.2722" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV>Hello, I am new to Radius and Free Radius, so forgave me if this question
<BR>has been asked or it is crazy.<BR><BR>We are in process of change all our
authentication and authorization.<BR>At the moment every "service" has it's own
user-id/password database. Thus <BR>authentication/authorization per service is
simple. want to deny access to a <BR>given user, disable his/her password or
that service.<BR>As you can imagine this has a big overhead and users have to
remember many <BR>user-id/password per.<BR><BR>Can we use Radius/LDAP to do
this.<BR>What I was hope we can do is as follow:<BR>everyone will get one
user-id/password But for every service we will create <BR>a boolean attribute.
All services, dialup/wireless/vpn/etc will use one <BR>radius server for both
Auth(authenticate/authorize).<BR>The question is can FreeRadius(or any radius)
be configured to as the LDAP <BR>for the correct service attribute and give
access both base on the <BR>user-id/password and what the value of the
services?<BR><BR>Thank you all for your help.</DIV></BODY></HTML>