Radius reply multivalue VSA question.
Eric Martell
workoutexcite at yahoo.com
Thu Oct 9 17:49:52 CEST 2008
Hi Ivan,
I agree with you. But I am reading those attributes from LDAP. In LDAP "entitlements" attribute is defined as Multivalue (array). I can't not change the existing LDAP structure.
I am mapping "entitlements" attribute from LDAP with the radius attribute rEntitlements in the ldap.attrmap
replyItem rEntitlements entitlements +=
which is good so far. But I don't need entire array from LDAP as reply just looking for WIFILOC1 and send that as reply.
Please let me know if you need more information.
Thanks so much.
Regards.
--- On Thu, 10/9/08, tnt at kalik.net <tnt at kalik.net> wrote:
From: tnt at kalik.net <tnt at kalik.net>
Subject: Re: Radius reply multivalue VSA question.
To: freeradius-users at lists.freeradius.org
Date: Thursday, October 9, 2008, 11:40 AM
> Thanks for the reply. After changing the operator += I am still seeing
all the VARRAY in the reply. It should reply back only
>Sending Access-Accept of id 65 to 216.121.193.1 port 49266
>
> rEntitlements += "WIFILOC1"
>
> rAttribute1 = "11111"
>
> rCidx = "11111"
>
>and not as it is happening now....
>
So why did you put those other rEntitlements into the user profile. If
they are not the same thing they shold have different attribute names.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20081009/39004db7/attachment.html>
More information about the Freeradius-Users
mailing list