User Authorization question
tnt at kalik.net
tnt at kalik.net
Mon Mar 30 22:03:41 CEST 2009
>Users file. For first round testing I would like to reject. Once I have this all squared away I will begin more detaile dconfig.
>
>DEFAULT Group-Name = "NOC", Auth-Type = Reject
> Reply-Message = "FAIL",
> Fall-Through = no
>
>DEFAULT Auth-Type = krb5
> Fall-Through = 1
>
>DEFAULT Auth-Type = System
>
>When an account that is local to the machine tries to authenticate it fails accordingly thus it appears the machine is still using the internal user/group mechanism, not the custom file. (notice how I am not using the default group file, I am using something separate to ensure that things remain... separate). Accounts not local to the machine authenticates and is given an access accept, unfortunatley it should fail them.
>
Yes, it is using local system accounts:
>DEFAULT Auth-Type = System
If you don't want it remove it.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list