Hi all, <br><br>I have a freeradius 2.1.3 running and I can successfully authenticate users. <br>I would like to use a users LDAP attribute so I can provide them with different permissions on the proxy server. <br>I have currently mapped a RADIUS attribute to the LDAP attribute and it successfully reads the attribute when a user is authenticating. <br>
<br>From radiusd -X:<br><br>rlm_ldap: description -> My-Local-LDAP-Comment = "STAFF"<br><br>So the user in question has STAFF as a comment in his ldap description attribute. <br><br>I have added the My-Local-LDAP-Comment into the raddb/dictionary file like this: <br>
<br>ATTRIBUTE My-Local-LDAP-Comment 3000 string<br><br>and in the raddb/ldap.attrmap I have added: <br><br>replyItem My-Local-LDAP-Comment description<br><br><br>Now, what I am failing to understand is how I can get the proxy server to receive the My-Local-LDAP-Comment attribute from RADIUS, <br>
so I can make rules depending on its contents?<br><br>Any suggestions on what to do, or which documentation to read would be appreciated. <br><br>Thanks, <br>Sigurd <br>