Setting Class attribute by LDAP Groups

[Patrick Gawthorne]

Hello

Currently trying to implement a way to get the Ldap-Group used for checking (within acct_users) into the Accounting-Request packet as the Class attribute.. I can get it to send a static variable just fine using; (I'm proxying the account messages)

update request {
                Class = "Some Variable"
}

However I was looking at doing something on the lines of;

update request {
                Class = "%{Ldap-Group}"
}

Also tried defining a custom variable within the dictionary file and setting it within acct_users however it expands to nothing in preacct section.. I must be doing something wrong.

I did read somewhere if you included the Class variable within the reply in the Access-Accept packet that it would be sent back and used within the accounting messages as well but this hasn't been the case for me.
Even if it's just some static variable that I set within the 'acct_users' to get it to send the class attribute; this will achieve my goal.
Assuming that the 'users' file and the 'acct_users' file have the same behaviour then why can't I set Class within the 'acct_users' file like I can with 'users' file?

Any assistance on this will be greatly appreciated. :)

Cheers,
Pat

This email, together with any attachments, is intended for the named recipient(s) only and may contain privileged and confidential information. If received in error, please inform the sender as quickly as possible and delete this email and any copies from your computer network. If not an intended recipient of this email, you must not copy, distribute or rely on it, and any form of disclosure, modification, distribution and/or publication of this email is prohibited. Unless stated otherwise, this email represents only the views of the sender and not the views of Pacific Lutheran College.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130704/c692f217/attachment.html>