Reject a specific realm from a client

David Aldwinckle daldwinc at
Thu Jul 11 13:47:42 CEST 2013


I have two clients that proxy access requests to me. The realm varies, but the format is always userid at realm.whatever

Is there a way that I can deny a specific realm when an access request is received from a specific client?

I tried adding something to policy.conf but I couldn't get the syntax right:

#Prevent secretrealm from logging in off-campus
if ("%{Realm}" == "") && ((Client-Shortname == "proxy-client1") || (Client-Shortname == "proxy-client2"))) {

Is there a different way that I should be doing this?


Dave Aldwinckle
Network Support Specialist
Information Systems and Technology
Phone: (519)-888-4567 ext. 31145
E-Mail: daldwinc at<mailto:daldwinc at>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the Freeradius-Users mailing list