LDAP Module only for Authorization and not for Authentication
Alan DeKok
aland at deployingradius.com
Sat May 24 10:12:54 CEST 2008
HRZ Konten wrote:
> I want when requests are comming from the IP in the huntgroup, then to
> be checked whether the user is in the LDAP-Group, when yes, then check
> user/password with pam and send Accecc-Accept.
> When the user isn't in the LDAP-Group, then should be rejected.
Put this in the "users" file. It's pretty much what you had...
DEFAULT Huntgroup-Name == "foo", LDAP-Group == "bar", Auth-Type := PAM
And repeat for different huntgroups && ldap groups.
Any users NOT found will automatically be rejected.
Alan DeKok.
More information about the Freeradius-Users
mailing list