Thank you, but where exactly do I specify my authorization policy?<br>
In the sites-available/default file, or in radiusd.conf? In what (sub)section?<br><br>I'm trying a simpler policy for now:<br><br>if(%{request:SDP-Bandwidth}<=2000) { Auth-Type := Accept }<br> else { Auth-Type := Reject }<br>
<br>I've tried this in default's post-auth section, but it doesn't seem to work (the server runs fine, but this condition is never verified).<br>I've tried it in radiusd.conf's post-auth section, but the server won't start:<br>
<br>/etc/freeradius/radiusd.conf[2129]: EOF reached without closing brace for section post-auth starting at line 2032<br><br>although I've checked, and every brace is matched. (By the way, SDP-Bandwidth is a custom defined attribute, type integer)<br>
What am I doing wrong?<br><br><br><div class="gmail_quote">On 10 June 2011 14:19, Alan DeKok <span dir="ltr"><<a href="mailto:aland@deployingradius.com">aland@deployingradius.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div class="im">Tiberiu Breana wrote:<br>
> Is it possible to authenticate users based on an attribute, if it exists<br>
> (in their request), but ignore it if it doesn't?<br>
> I've read the 'man users', but haven't found anything suitable.<br>
<br>
</div>$ man unlang<br>
<br>
Alan DeKok.<br>
<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</blockquote></div><br>