peap/eap tls authentication

A.L.M.Buxey at A.L.M.Buxey at
Fri Oct 12 21:48:47 CEST 2007

> I do post users
> thanks

> dkupis Auth-Type := system
>         Service-Type = NAS-Prompt-User,
>         cisco-avpair == "shell:priv-lvl=15",
>         idle-timeout = 1800

okay. from this it looks like your attempting to configure FR to do some
form of Cisco device login authentication. is the user 'dkupis' in
/etc/passwd and /etc/shadow etc? if not, then how can the password be tested?
also, cisco-avpair == "shell:priv-lvl=15" is a (broken) comparison, if you
want to set that value you need

cisco-avpair = "shell:priv-lvl=15"


More information about the Freeradius-Users mailing list