Two routers using the same Radius server?
Mark Tunnell
mtunnell at livebridge.com
Wed Dec 14 01:59:13 CET 2005
Nice! That gets me almost all the way there. I'm able to
authenticate using Auth-Type := Local. Now I just need to figure out
how to authenticate that type of user name (user at realm) using
Auth-Type := System. Any ideas how to go about that?
Thanks,
Mark
Lewis Bergman wrote:
> Mark Tunnell wrote:
>
>> Suppose I have two Cisco routers both configured to authenticate to
>> the same radius server. How do I allow a particular user access to
>> one router but not the other? Is there a place in the clients.conf or
>> users file to configure this?
>>
> Oh yea, Alan gave me a trick with the hints file that adds a realm to a
> client if one is not present that could also help.
> DEFAULT User-Name !~ ".*@", NAS-IP-Address == "ip of client"
> User-Name := "%{User-name}@realmtoadd.com"
>
More information about the Freeradius-Users
mailing list