reject some users from radius - ldap ?
Frank Bonnet
f.bonnet at esiee.fr
Wed Sep 7 15:25:06 CEST 2005
Nicolas Baradakis wrote:
> I'm doing this with MySQL on my site, but perhaps the following
> approach may work with LDAP:
>
> 1. Define huntgroups "wifi" and "wired" in raddb/huntgroups.
>
> 2. In LDAP, provision the attribute "radiusHuntgroupName" with the
> values "wifi" or "wired" (or both) in all the "radiusprofile"
> entries.
>
> 3. In the section ldap{} of raddb/radiusd.conf, modify the filter
> like that:
>
> filter = (&(uid=%{User-Name})(radiusHuntgroupName=%{Huntgroup-Name}))
>
Thanks a lot Nicolas , I'm going to try this way.
--
Cordialement/Regards
Frank Bonnet
More information about the Freeradius-Users
mailing list