Thank you very much. The solution was too easy. :-) Juergen Alan DeKok wrote:
Juergen Koller wrote:
freeradius checks now for authorization against the LDAP-database and gets back if the user exists or not (according to the debug output). But the user will not be rejected, if not in the LDAP-database.
Perhaps I did not read the right document file right now. Perhaps Autz-Type is the totaly wrong approach. Any hints?
See the return code of the ldap module:
... ldap if (notfound) { reject } ...
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- email: koller@idmt.fraunhofer.de gilb: Fraunhofer-IDMT, Ehrenbergstrasse 31, 98693 Ilmenau Tel.: +49 3677 467-340 Fax: +49 3677 467-4340 GSM: +49 175 183 5160