Hi All,
I want to use huntgroup to restrict access to certain
huntgroups to certaingroups of users. So I edit my huntgroups file :
swLabo NAS-IP-Address == 192.168.0.50
Group = administrateur
I guess that administrateur is a Ldap-Group, isn’t it ?
And I use OpenLDAP to store my users and my radiusGroupName.
dn:
ou=Profiles,dc=netplus,dc=fr
objectClass:
organizationalUnit
objectClass:
top
ou:
Profiles
dn:
cn=administrateur,ou=Profiles,dc=netplus,dc=fr
objectClass:
radiusObjectProfile
objectClass:
top
objectClass:
radiusprofile
radiusServiceType:
NAS-Prompt-User
radiusVSA:
shell:priv-lvl=15
cn:
administrateur
dn: cn=Francois MEHAULT,ou=Utilisateurs,dc=netplus,dc=fr
givenName:: RnJhbsOnb2lz
sn: MEHAULT
uid: fmehault
uidNumber: 1203
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
objectClass: radiusprofile
radiusGroupName: administrateur
homeDirectory: /home/fmehault
loginShell: /usr/local/bin/zsh
cn: Francois MEHAULT
gidNumber: 1203
userPassword: {SHA}C5wmJdwh7wX2rU3fR8XyA4N6oyw=
So I understand that fmehault is able to authenticate on the
NAS 192.168.0.50. But I have a segmentation fault of radiusd. I created also
the posix group administrateur which includes fmehault.
rad_recv: Access-Request packet from host 192.168.0.50 port
1812, id=67, length=80
NAS-IP-Address = 192.168.0.50
NAS-Port = 1
NAS-Port-Type = Virtual
User-Name = "fmehault"
Calling-Station-Id = "192.168.0.80"
User-Password = "mdp"
+- entering group authorize {...}
zsh: segmentation fault radiusd –X
# id fmehault
uid=1203(fmehault) gid=1203 groups=1203,1400(administrateur)
What is the problem ? If someone has a documentation/howto
about huntgroups and group, I am interested.
Regards,
François Mehault
Netplus Communication