Alan DeKok wrote:
-----Original Message-----
Rob Ansaldo wrote:
The IAS server does not have these attributes, nor do we want to use the IAS server for them.
Or... you could just use FreeRADIUS for everything. :)
We can dream, right? :)
Is what I am trying to do possible and if so, how would I go about it?
Yes. Delete "sql" from the "authorize" section. Instead, add it to the "post-auth" section as "sql.authorize".
The SQL module will be queried *after* it receives the Access-Accept from IAS. The SQL queries which are used will be the ones you've already configured from "authorize", which seem to work.
Yes! This works perfectly! I had previously tried using just the "sql" section in "post-auth", but as expected it ran the "postauth_query". Will go dig around the comments and see how I missed the "sql.authorize" syntax. Thank you Alan!