dynamic VLAN assignment w/ mschapv2 against AD and LDAP
Alan DeKok
aland at deployingradius.com
Thu Jan 20 20:15:08 CET 2011
schilling wrote:
>Basically, I want to achieve
> If (ldap authorization) {
> if (ldap.employeeStatus = facstaff) {
> REPLY{'Service-Type'} = "Framed-User";
> REPLY{'Tunnel-Type'} = "VLAN";
> REPLY{'Tunnel-Medium-Type'} = "IEEE-802";
> REPLY{'Tunnel-Private-Group-Id'} = "facstaff";
> } else { # no ldap.employeeStatus attribute or ldap.employeeStatus
You can put pretty much that into a Perl script, or into "unlang".
> What's the easiest way to accomplish this? unlang? perl module? Where to start?
I'd write a Perl script first.
Alan DeKok.
More information about the Freeradius-Users
mailing list