Hi, I'm trying to restrict access to several users to an specific service (some users can access only our cisco devices and some others only the juniper devices) as far as we know we can use huntgroups for that. The thing is that there's no information about them, only if you are working with a database. Right now we can't install a database to work with the radius server because we don't own it. Do you have a tutorial, book or something that can help us with that configuration?? Thanks in advance. Alfonso.
Alfonso Alejandro Reyes Jiménez wrote:
Hi, I'm trying to restrict access to several users to an specific service (some users can access only our cisco devices and some others only the juniper devices) as far as we know we can use huntgroups for that. The thing is that there's no information about them, only if you are working with a database.
Uhh... have you tried reading the "huntgroups" file that comes with the server? Alan DeKok.
Yes, we have no luck we are trying the following configuration: huntgroups file juniper NAS-IP-Address == 192.168.1.1 users file usertest Auth-Type := Local, User-Password == "testing" Huntgroup-Name == "juniper" clients.conf client 192.168.1.1 { secret = n3t5cr33n shortname = ssg5 } we are not able to get the access-accept, that's why we would like to read more about them, is there anything that we are not configuring right? Thanks for your reply. Regards. Alfonso. El 25/05/2010 04:12 p.m., Alan DeKok escribió:
Alfonso Alejandro Reyes Jiménez wrote:
Hi, I'm trying to restrict access to several users to an specific service (some users can access only our cisco devices and some others only the juniper devices) as far as we know we can use huntgroups for that. The thing is that there's no information about them, only if you are working with a database.
Uhh... have you tried reading the "huntgroups" file that comes with the server?
Alan DeKok.
We changed the huntgroup value to the first line according to the debug information and everything is working. Thanks. Regards. Alfonso. El 25/05/2010 04:22 p.m., Alfonso Alejandro Reyes Jiménez escribió:
Yes, we have no luck we are trying the following configuration:
huntgroups file
juniper NAS-IP-Address == 192.168.1.1
users file
usertest Auth-Type := Local, User-Password == "testing" Huntgroup-Name == "juniper"
clients.conf
client 192.168.1.1 { secret = n3t5cr33n shortname = ssg5 }
we are not able to get the access-accept, that's why we would like to read more about them, is there anything that we are not configuring right?
Thanks for your reply.
Regards.
Alfonso.
El 25/05/2010 04:12 p.m., Alan DeKok escribió:
Alfonso Alejandro Reyes Jiménez wrote:
Hi, I'm trying to restrict access to several users to an specific service (some users can access only our cisco devices and some others only the juniper devices) as far as we know we can use huntgroups for that. The thing is that there's no information about them, only if you are working with a database. Uhh... have you tried reading the "huntgroups" file that comes with the server?
Alan DeKok.
Try: Cleartext-Password := "some_password" ----- Original Message ---- From: Alfonso Alejandro Reyes Jiménez <conesh@gmail.com> To: freeradius-users@lists.freeradius.org Sent: Tue, May 25, 2010 5:22:45 PM Subject: Re: ..::Hunt Groups::.. Yes, we have no luck we are trying the following configuration: huntgroups file juniper NAS-IP-Address == 192.168.1.1 users file usertest Auth-Type := Local, User-Password == "testing" Huntgroup-Name == "juniper" clients.conf client 192.168.1.1 { secret = n3t5cr33n shortname = ssg5 } we are not able to get the access-accept, that's why we would like to read more about them, is there anything that we are not configuring right? Thanks for your reply. Regards. Alfonso. El 25/05/2010 04:12 p.m., Alan DeKok escribió:
Alfonso Alejandro Reyes Jiménez wrote:
Hi, I'm trying to restrict access to several users to an specific service (some users can access only our cisco devices and some others only the juniper devices) as far as we know we can use huntgroups for that. The thing is that there's no information about them, only if you are working with a database.
Uhh... have you tried reading the "huntgroups" file that comes with the server?
Alan DeKok.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
the Huntgroup-Name needs to be on the same line as the username. It's a check item not a reply item. Alfonso Alejandro Reyes Jiménez wrote:
Yes, we have no luck we are trying the following configuration:
huntgroups file
juniper NAS-IP-Address == 192.168.1.1
users file
usertest Auth-Type := Local, User-Password == "testing" Huntgroup-Name == "juniper"
clients.conf
client 192.168.1.1 { secret = n3t5cr33n shortname = ssg5 }
we are not able to get the access-accept, that's why we would like to read more about them, is there anything that we are not configuring right?
Thanks for your reply.
Regards.
Alfonso.
El 25/05/2010 04:12 p.m., Alan DeKok escribió:
Alfonso Alejandro Reyes Jiménez wrote:
Hi, I'm trying to restrict access to several users to an specific service (some users can access only our cisco devices and some others only the juniper devices) as far as we know we can use huntgroups for that. The thing is that there's no information about them, only if you are working with a database.
Uhh... have you tried reading the "huntgroups" file that comes with the server?
Alan DeKok.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (4)
-
Alan DeKok -
Alfonso Alejandro Reyes Jiménez -
Jiann-Ming Su -
Kenneth Grady