Authenticate users different Domain using LDAP group search
Luis Diaz
ldiaz at rumbo.com
Wed Feb 5 08:11:50 CET 2014
Thanks for the clarification about FR versions Arran. I will keep it in
mind since I'm using FR 2.x.x.
Have a good one.
On Tue, Feb 4, 2014 at 3:25 PM, Arran Cudbard-Bell <
a.cudbardb at freeradius.org> wrote:
> >
> > Finally, the users file config:
> >
> > DEFAULT domain1-Ldap-Group == "gr_users_wifi"
> > Tunnel-Type = VLAN,
> > Tunnel-Medium-Type = IEEE-802,
> > Tunnel-Private-Group-Id:0 = "X"
> > DEFAULT domain2-Ldap-Group == "gr_users_wifi_domain2"
> > Tunnel-Type = VLAN,
> > Tunnel-Medium-Type = IEEE-802,
> > Tunnel-Private-Group-Id:0 = "X"
>
> Yes. LDAP-Group should not be used in v2.x.x if multiple instances of the
> LDAP module are in use, the instance referred to by LDAP-Group is based on
> instantiation order which is quite fragile.
>
> In v3.x.x LDAP-Group will always refer to the ldap {} (default) instance,
> to help avoid this sort of confusion.
>
> Arran Cudbard-Bell <a.cudbardb at freeradius.org>
> FreeRADIUS Development Team
>
> FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
>
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140205/bb98cd18/attachment.html>
More information about the Freeradius-Users
mailing list