Eddie Stassen wrote: > c. Hack rlm_sql to add replicate the authorize behaviour in post-auth > (perhaps this would be the proper solution?) Yes. If you're not using the existing SQL post-auth functionality, a one-line change to map post-auth to authorize would be easy to do. Alan DeKok.