<div dir="ltr"><div>Worked like a charm. Thank you so much Olivier !</div></div><div class="gmail_extra"><br><br><div class="gmail_quote">On Thu, May 22, 2014 at 1:28 AM, Olivier Beytrison <span dir="ltr"><<a href="mailto:olivier@heliosnet.org" target="_blank">olivier@heliosnet.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div class="">On <a href="tel:21.05.2014%2021" value="+12105201421" target="_blank">21.05.2014 21</a>:41, Ajinkya Fotedar wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
(0) ldap : reply:F5-LTM-User-Info-1 := 'F5-LTM-User-Info-1+=\"R&D\"'<br>
(0) ldap : reply:F5-LTM-User-Info-1 := 'F5-LTM-User-Partition+=\"RnD\<u></u>"'<br>
(0) ldap : reply:F5-LTM-User-Info-1 := 'F5-LTM-User-Role+=\"100\"'<br>
(0) ldap : reply:F5-LTM-User-Info-1 := 'F5-LTM-User-Shell+=\"tmsh\"'<br>
</blockquote>
<br></div>
what's actually wrong in your config is this entry in the ldap update map :<br>
<br>
reply:F5-LTM-User-Info-1 := 'radiusReplyItem'<br>
<br>
if you're using 3.0.x you should actually use<br>
valuepair_attribute = "radiusReplyItem" in your ldap configuration<br>
<br>
and update your ldap entries to add the list :<div class=""><br>
<br>
# R&D, Groups, F5, Configuration, NIS, vt<br>
dn: cn=R&D,ou=Groups,ou=F5,ou=<u></u>Configuration,ou=NIS,o=vt<br>
cn: R&D<br>
description: Entiries for the R&D group user accounts<br>
member: uid=dawson,ou=People,ou=NIS,o=<u></u>vt<br></div>
radiusReplyItem: reply:F5-LTM-User-Info-1+="R&<u></u>D"<br>
radiusReplyItem: reply:F5-LTM-User-Partition+="<u></u>RnD"<br>
radiusReplyItem: reply:F5-LTM-User-Role+=100<br>
radiusReplyItem: reply:F5-LTM-User-Shell+="<u></u>tmsh"<br>
<br>
you could set in the update {} section<br>
reply: += 'radiusReplyItem' and this would also work, but this is provided as a backward compatibility. i'll encourage you to rather use the new valuepair_attribute<br>
<br>
for reference : <a href="https://github.com/FreeRADIUS/freeradius-server/blob/master/raddb/mods-available/ldap#L27" target="_blank">https://github.com/FreeRADIUS/<u></u>freeradius-server/blob/master/<u></u>raddb/mods-available/ldap#L27</a><span class="HOEnZb"><font color="#888888"><br>
<br>
Olivier<br>
-- <br>
Olivier Beytrison<br>
Network & Security Engineer, HES-SO Fribourg<br>
Mail: <a href="mailto:olivier@heliosnet.org" target="_blank">olivier@heliosnet.org</a></font></span><div class="HOEnZb"><div class="h5"><br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/<u></u>list/users.html</a><br>
</div></div></blockquote></div><br></div>