<div dir="ltr">Dear Alan,<div><br></div><div>Thank you for your reply, I did follow the rest of that guide and added the following information:</div><div><br></div><div><div>INSERT INTO `radusergroup` (`username`, `groupname`, `priority`) VALUES</div><div>('test', 'site_a_admins', 0);</div></div><div><br></div><div><div>INSERT INTO `radhuntgroup` (`id`, `groupname`, `nasipaddress`, `nasportid`) VALUES</div><div>(1, 'site_a', '192.168.56.2', NULL);</div></div><div><br></div><div><div>INSERT INTO `radgroupcheck` (`id`, `groupname`, `attribute`, `op`, `value`) VALUES</div><div>(3, 'site_a_admins', 'Huntgroup-Name', '==', 'site_a');</div></div><div><br></div><div>If I understand the guide correctly only the test user should be able to logon to site_a, however I am also granted access using my test2 user credentials: did I overlook something? Again, thanks in advance!</div><div class="gmail_extra"><br clear="all"><div><div dir="ltr"><div>Kind regards,</div><div><br></div><div>Jeroen Bosch</div><div><br></div><div><img src="http://netyce.com/dev/wp-content/themes/netYCE/img/logo.gif"><br></div><div><i style="font-size:x-small"><b>Design Driven Networking - Smarter, better, controllable networks </b></i></div><div><font size="1"><b><i><br></i></b></font><div><font size="1"><font color="#999999">Jeroen Bosch</font> <font color="#999999">| Developer</font></font></div><div><span style="color:rgb(136,136,136);font-size:x-small">Business Centre Leeuwenveldseweg 5n, 1382 LV Weesp, NL</span><br style="color:rgb(136,136,136);font-size:x-small"></div><div><font size="1"><font color="#999999">m:</font> +31 6 22768473 <span style="color:rgb(136,136,136)">| t: </span><a value="+31208943412" style="color:rgb(17,85,204)">+31 20 894 3412</a><span style="color:rgb(136,136,136)"> </span><br></font><div><font size="1"><a href="mailto:jeroen.bosch@netyce.com" target="_blank">jeroen.bosch@netyce.com</a> <font color="#999999">|</font> <a href="http://www.netyce.com" target="_blank">www.netyce.com</a></font></div></div></div></div></div>
<br><div class="gmail_quote">On Thu, Sep 11, 2014 at 5:05 PM, Alan DeKok <span dir="ltr"><<a href="mailto:aland@deployingradius.com" target="_blank">aland@deployingradius.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><span class="">Jeroen Bosch wrote:<br>
> I'm trying to setup Huntgroups using the<br>
> HOWTO <a href="http://wiki.freeradius.org/guide/SQL-Huntgroup-HOWTO" target="_blank">http://wiki.freeradius.org/guide/SQL-Huntgroup-HOWTO</a><br>
><br>
> after adding "update reply {<br>
> Huntgroup-Name := "%{sql:SELECT groupname FROM radhuntgroup<br>
> WHERE nasipaddress='%{NAS-IP-Address}'}"<br>
> }"<br>
><br>
> to my sites-enabled/default I do see the queries in the debugging<br>
> information checking if the supplied user is part of the Huntgroup<br>
> however when this is not the case the user still get's access:<br>
<br>
</span> You should follow the REST of that guide. Specifically, add an entry<br>
to the "radgroupcheck" table.<br>
<span class="HOEnZb"><font color="#888888"><br>
Alan DeKok.<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</font></span></blockquote></div><br></div></div>