Tricky problem with ldap and primary groups in AD
Franks Andy (RLZ) IT Systems Engineer
Andy.Franks at sath.nhs.uk
Thu Aug 2 18:31:18 CEST 2012
Thank Alan,
That works fine. However I'm still intrigued about why the other
method fails, and I also presume this method doesn't allow multiple
attribute types to be updated as per the exec-program-wait script in the
example documentation?
Maybe it's not supported? Must admit I am a little confused about the
output_pairs = config. Are configuration items totally unrelated to
control attributes? That's probably a daft question but I am stumped!
Thanks very much again
Andy
-----Original Message-----
From:
freeradius-users-bounces+andy.franks=sath.nhs.uk at lists.freeradius.org
[mailto:freeradius-users-bounces+andy.franks=sath.nhs.uk at lists.freeradiu
s.org] On Behalf Of Alan DeKok
Sent: 02 August 2012 17:19
To: FreeRadius users mailing list
Subject: Re: Tricky problem with ldap and primary groups in AD
Franks Andy (RLZ) IT Systems Engineer wrote:
> and am assigning the Reply-Message attribute the value that should be
> returned from the script using
>
> update reply {
> Reply-Message := "%{control:My-Local-Integer}"
> }
You can just do:
update reply {
Reply-Message := `/path/to/program`
}
And have the program print out the new value.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list