OpenLDAP Groups
Jean Carlos Coelho
coelho at teltecsolutions.com.br
Mon Oct 21 15:56:35 CEST 2013
Ok
This conf is at "post-auth"? Where can I find some how to's to configure
this actions?
21/10/13 11:12, "Alan DeKok" <aland at deployingradius.com> wrote:
>Jean Carlos Coelho wrote:
>> Is there some way to configure free radius to use openldap groups?
>
> Yes. Use the LDAP-Group attribute to check group membership.
Ok, after send this message I make some local tests (debug) and is Ok, I
need to integrate ldap to pam and then use only the primary groups, that's
it?
>
>> Like.. My user1 is group ceo and can connect to the wifi lanŠ but user2
>> is at the group "nowifi" and then not allowed to connect at wifi lan.
>> And is possible to identify the source of the connection? Some regex
>> exp. Like:
>
> if (Packet-Src-IP-Address == wifi.ip) {
> if (LDAP-Group == "wifi") {
> # ... do things ...
> }
> else {
> reject
> }
> }
This conf is at "post-auth"? Where can I find some how to's to configure
this actions (regular expressions)?
>
> Alan DeKok.
>-
>List info/subscribe/unsubscribe? See
>http://www.freeradius.org/list/users.html
>
More information about the Freeradius-Users
mailing list