Cisco VPN Server 3000 + Radius + LDAP = heeelp!!

tnt at kalik.net tnt at kalik.net
Tue Sep 9 23:40:39 CEST 2008


>Thanks for your answer Leonardo but, if I define the groups in the Cisco 
>VPN Server, it will be enough with knowing the password of other defined 
>group's to obtain an address from a group to which I don't really 
>belong. I.e., if Sale's user know password of Development group, will 
>can receive an Development address. 
>    

Ahem, passwords are in user profile and have nothing to do with groups.
Person who is added to the Sales group can't move to Development group
by changing his password.

Ivan Kalik
Kalik Informatika ISP




More information about the Freeradius-Users mailing list