Using FreeRadius to override VLAN Assignment

McSparin, Joe jmcsparin at hillcountrymemorial.org
Wed Jan 4 19:39:21 CET 2012


If I removed the Auth-Type part would it process it for all requests for testing purposes? 


Joseph R. McSparin
Network Administrator
Hill Country Memorial Hospital
830 990 6638 phone
830 990 6623 fax
jmcsparin at hillcountrymemorial.org

-----Original Message-----
From: freeradius-users-bounces+jmcsparin=hillcountrymemorial.org at lists.freeradius.org [mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org at lists.freeradius.org] On Behalf Of Alan Buxey
Sent: Wednesday, January 04, 2012 12:34 PM
To: FreeRadius users mailing list
Subject: Re: Using FreeRadius to override VLAN Assignment

Hi,

>    I have put the following into my users files
> 
>    DEFAULT  Auth-Type = "ntlm_auth"
>                    Tunnel-Type = "VLAN",
>                    Tunnel-Medium-Type = "IEEE-802",
>                    Tunnel-Private-Group-id = "1001"

okay - thats a CHECK item - if the Auth-Type = ntlm_auth, followed
by a load of reply items.....  which look like standard VLAN override
values (eg that Cisco use)

>    I have told my access point to Allow RADIUS Override on the VLAN
>    Assignment however the VLAN is not getting overridden.  Does the Above
>    entry into my users file not actually send back a vlan assignment and if
>    not is there somewhere else this is supposed to be done?

this will work if the 'type' is what you think it is....run the server in debug
mode and see what it says....in the output you will see if your 'users' file
entry is doing anything...

we use PERL code to do this work rather than users file - as it can be called 
where and when we want it called, with lots of wrappers/code around to deal with
correct type of user etc

alan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-- 
This email message and any attachments are for the sole use of the intended recipient(s) and contain confidential and/or privileged information. Any unauthorized review, use, disclosure or distribution is prohibited. If you are not the intended recipient, please contact the sender by reply email and destroy all copies of the original message and any attachments.






More information about the Freeradius-Users mailing list