How to configure USERS file to assign the VLAN ID according toLDAP group name?
Richard
baixin at gmail.com
Tue Oct 31 21:14:29 CET 2006
Hi, Alan,
Thanks for reply.
Right now the situation is the RADIUS can authenticate the user in LDAP. But the group attribute does work. So, the vlan ID can not be assigned. Could you tell me what should be correct configuration in users file.
Richard
----- Original Message -----
From: "Alan DeKok" <aland at deployingradius.com>
To: "FreeRadius users mailing list" <freeradius-users at lists.freeradius.org>
Sent: Tuesday, October 31, 2006 6:19 PM
Subject: Re: How to configure USERS file to assign the VLAN ID according toLDAP group name?
> "richard Bai" <baixin at gmail.com> wrote:
>> This is my *users* file configuration:
>> *DEFAULT Group == "1"*
>
> Why put asterisks around every line?
>
>> * Auth-Type = LDAP,*
>
> 1) Auth-Type belongs on the first line, "radiusd -X" will tell you that
> 2) Setting Auth-Type = LDAP is probably wrong.
>
>> Now, it works fine except I have to add more lines manual once I add one
>> more group in LDAP.
>
> Except the "Group" attribute is for Unix groups, not LDAP groups.
>
> Either your system *doesn't* work at all, or the "users" file
> entries you included above are *not* what you're using.
>
>> Such as programming:
>> *Tunnel-Private-Group-ID = Group *
>
> See doc/variables.txt. It explains how to copy the contents of one
> attribute to another attribute.
>
> Alan DeKok.
> --
> http://deployingradius.com - The web site of the book
> http://deployingradius.com/blog/ - The blog
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list