Rejecting realms based on calling client

A.L.M.Buxey at lboro.ac.uk A.L.M.Buxey at lboro.ac.uk
Thu Aug 15 15:48:00 CEST 2013


Hi,

> Initially FreeRadius would not start and I did get an error indicating
> that the "remote_secret_reject" module failed to load. There was no reason
> given even with -XXX. I found since then that I was missing a brace.
> 
> Now I can get FreeRadius to start. I still seem to be missing something
> though, since my policy does not work. Here it is:
> 
> remote_secret_reject {
> 	if ((Realm == "secret.campus.ca") && ((Client-Shortname == "proxy1.net")
> || (Client-Shortname == "proxy2.net"))) {
> 		reject
> 	}
>         }

radiusd -X

it will show the logic, the variables and the result. you can then see why things arent working

alan


More information about the Freeradius-Users mailing list