On 12/6/2010 6:31 PM, Alan DeKok wrote:
Christ Schlacta wrote:
1) the user has bad or no credentials in this case the user should be sent to a captive vlan where all they can do is connect to the registration webpage to acquire a certificate and bind it to their wifi MAC address. You want a captive portal. This has very little to do with RADIUS.
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html I know i'll be developing a custom captive portal to run, what I need to know is how a) freeradius needs to interact with the portal software (can freeradius run scripts as hooks? or similar?, or does freeradius need to use some complex configuration to make updates to the backend (probably sql or ldap), and b) what does hostapd need to allow users with failed authentication to connect, but to a different vlan? is that even possible.
in the grand scheme of things, captivating clients on any given vlan will be a very simple task.