Two routers using the same Radius server?

Mark Tunnell mtunnell at livebridge.com
Wed Dec 14 01:59:13 CET 2005


Nice!  That gets me almost all the way there.  I'm able to
authenticate using Auth-Type := Local.  Now I just need to figure out
how to authenticate that type of user name (user at realm) using
Auth-Type := System.  Any ideas how to go about that?

Thanks,

Mark

Lewis Bergman wrote:
> Mark Tunnell wrote:
> 
>> Suppose I have two Cisco routers both configured to authenticate to
>> the same radius server.  How do I allow a particular user access to
>> one router but not the other?  Is there a place in the clients.conf or
>> users file to configure this?
>>
> Oh yea, Alan gave me a trick with the hints file that adds a realm to a
> client if one is not present that could also help.
> DEFAULT User-Name !~ ".*@", NAS-IP-Address == "ip of client"
>         User-Name := "%{User-name}@realmtoadd.com"
> 



More information about the Freeradius-Users mailing list