Hi All,

 

I want to use huntgroup to restrict access to certain huntgroups to certaingroups of users. So I edit my huntgroups file :

 

swLabo                NAS-IP-Address == 192.168.0.50

                               Group = administrateur

 

I guess that administrateur is a Ldap-Group, isn’t it ? And I use OpenLDAP to store my users and my radiusGroupName.

 

dn: ou=Profiles,dc=netplus,dc=fr

objectClass: organizationalUnit

objectClass: top

ou: Profiles

 

dn: cn=administrateur,ou=Profiles,dc=netplus,dc=fr

objectClass: radiusObjectProfile

objectClass: top

objectClass: radiusprofile

radiusServiceType: NAS-Prompt-User

radiusVSA: shell:priv-lvl=15

cn: administrateur

 

dn: cn=Francois MEHAULT,ou=Utilisateurs,dc=netplus,dc=fr
givenName:: RnJhbsOnb2lz
sn: MEHAULT
uid: fmehault
uidNumber: 1203
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: top
objectClass: radiusprofile
radiusGroupName: administrateur
homeDirectory: /home/fmehault
loginShell: /usr/local/bin/zsh
cn: Francois MEHAULT
gidNumber: 1203
userPassword: {SHA}C5wmJdwh7wX2rU3fR8XyA4N6oyw=

 

So I understand that fmehault is able to authenticate on the NAS 192.168.0.50. But I have a segmentation fault of radiusd. I created also the posix group administrateur which includes fmehault.

 

rad_recv: Access-Request packet from host 192.168.0.50 port 1812, id=67, length=80

        NAS-IP-Address = 192.168.0.50

        NAS-Port = 1

        NAS-Port-Type = Virtual

        User-Name = "fmehault"

        Calling-Station-Id = "192.168.0.80"

        User-Password = "mdp"

+- entering group authorize {...}

zsh: segmentation fault  radiusd –X

 

# id fmehault

uid=1203(fmehault) gid=1203 groups=1203,1400(administrateur)

 

What is the problem ? If someone has a documentation/howto about huntgroups and group, I am interested.

 

Regards,

 

François Mehault

Netplus Communication