<div>Thanks Fajar.</div><div><br></div> In previous mail, "Push Policy" means Radius Attribute only. I am using EAP-TLS and When a client sends a radius request with username "user1" to radius server. In access accept I am able to see attributes configured in users file being returned.<div>
<div><br></div><div>In <i><b>/etc/raddb/users</b></i> file</div><div><b>user1 Cleartext-Password := "user1"</b></div><div><b><div> Tunnel-Type := 13,</div><div> Tunnel-Medium-Type := 6,</div>
<div> Tunnel-Private-Group-Id := "guest",</div></b></div><div><b> LVL7-Wireless-Client-Policy-Dn := "policy1"</b>,</div><div><br></div><div><br></div><div><br></div><div>Similarly for a usergroup say "usergroup1" I should send radius attributes.. Also with client Mac which can be seen in radius request as calling station id.</div>
<div><br></div><div>Can we do it from modifying config files instead of modifying sql database?</div><div><br></div><div>Regards,</div><div>Subhani</div><br><div class="gmail_quote">On Sun, Sep 30, 2012 at 4:35 PM, Fajar A. Nugraha <span dir="ltr"><<a href="mailto:list@fajar.net" target="_blank">list@fajar.net</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="im">On Sun, Sep 30, 2012 at 4:53 PM, Subhani sk m <<a href="mailto:subhani19.cool@gmail.com">subhani19.cool@gmail.com</a>> wrote:<br>
> Hi,<br>
><br>
> I am using free radius on Linux, Fedora 13. I am able to push policy for a<br>
> user.. I need help on two scenarios given below.<br>
><br>
> 1.how to push policy for a specific usergroup from free radius sever<br>
><br>
<br>
</div>Depends on what you mean by "push policy". If it's just "return some<br>
radius attribute"), then if you use database, simply put it on<br>
radgroupreply table. See the included documentation, or<br>
<a href="http://wiki.freeradius.org/modules/Rlm_sql" target="_blank">http://wiki.freeradius.org/modules/Rlm_sql</a><br>
<div class="im"><br>
> 2. how to push a policy for a specific Calling-Station-ID like<br>
> 00:16:6F:A2:XX:XX [ no user specific policy returned]<br>
<br>
</div>Short version? Use unlang (<a href="http://freeradius.org/radiusd/man/unlang.html" target="_blank">http://freeradius.org/radiusd/man/unlang.html</a>)<br>
<span class="HOEnZb"><font color="#888888"><br>
--<br>
Fajar<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</font></span></blockquote></div><br></div>