Received: from mxdrop29.xs4all.nl (mxdrop29.xs4all.nl [194.109.24.85])
	by list4.xs4all.nl (8.12.11/8.12.11) with ESMTP id k6861U0l032020
	for <freeradius-users@list4.xs4all.nl>;
	Sat, 8 Jul 2006 08:01:30 +0200 (CEST)
	(envelope-from hariharan@lantana.tenet.res.in)
Received: from lantana.tenet.res.in (lantana.tenet.res.in [203.199.255.5])
	by mxdrop29.xs4all.nl (8.13.6/8.13.6) with ESMTP id k6861RcT003875
	for <freeradius-users@lists.freeradius.org>;
	Sat, 8 Jul 2006 08:01:29 +0200 (CEST)
	(envelope-from hariharan@lantana.tenet.res.in)
Received: from lantana.tenet.res.in (localhost.localdomain [127.0.0.1])
	by lantana.tenet.res.in (8.12.11/8.12.11) with ESMTP id k6863ND1027291
	for <freeradius-users@lists.freeradius.org>;
	Sat, 8 Jul 2006 11:33:28 +0530
Received: from localhost (hariharan@localhost)
	by lantana.tenet.res.in (8.12.11/8.12.11/Submit) with ESMTP id
	k6863IGc027283 for <freeradius-users@lists.freeradius.org>;
	Sat, 8 Jul 2006 11:33:23 +0530
Date: Sat, 8 Jul 2006 11:33:18 +0530 (IST)
From: Hariharan R <hariharan@lantana.tenet.res.in>
To: freeradius-users@lists.freeradius.org
Subject: Authentication by validating RADIUS attribute value
Message-ID: <Pine.LNX.4.60.0607081118060.26522@lantana.tenet.res.in>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed
Lantana-X-MailScanner-Information: Please contact the ISP for more information
Lantana-X-MailScanner: Mail-scanner Found to be clean
Lantana-X-MailScanner-From: hariharan@lantana.tenet.res.in
X-XS4ALL-DNSBL-Checked: mxdrop29.xs4all.nl checked 203.199.255.5 against DNS
	blacklists
X-Virus-Scanned: by XS4ALL Virus Scanner
X-XS4ALL-Spam-Score: 0 () 
X-XS4ALL-Spam: NO


Hi all,
  I am using FreeRADIUS1.1.1 and Fedora directory server7.2 as the LDAP 
backend to store all the user information.

  I configured RADIUS to contact LDAP server for authenticate the user 
request.

  I have to implement the following requirement,

  For each user in the LDAP server i will set some value to the RADIUS 
attribute , say for eg Filter-ID = 100

   If an authentication request comes to the RADIUS server it will contact 
the LDAP server, if the user is present in the LDAP server the RADIUS will 
authenticate the user.

  What i want is, i want to authenticate the user by validating the value 
of the RADIUS attribute in LDAP server. For example if the Filter-ID is 
100 for user 'jack' i have to authenticate. If 'jack' has Filter-ID 
as 123 i should not authenticate.

  Is i have to call a script before authenticating an user?
  If it is so how i can call and from which file i have to define the
  entries?

  What are the various methods by which i can achieve the above?

  Anyone pls help me to get rid of the problem.

  Thanks in advance.

Pls give me the complete details.

---
Regards,
Hariharan.R
