Howto group Users authenticated with ldap

Alan DeKok aland at deployingradius.com
Mon Mar 17 23:22:12 CET 2014


Mischa Diehm wrote:
> added the rlm_passwd (btw. there is a small typo in rlm_files in the
> Description section when referencing rlm_passwd (it says rlm_passed)) to

  I've fixed that, thanks.

> and it actually does get added. From debug output:
> Mon Mar 17 09:02:05 2014 : Info: [groups] Added My-Group: 'testop' to
> config_items

  That's good.

> my problem is this Attribute seems not to match in the users file where I
> have this line:
> 
> DEFAULT Auth-Type := LDAP, My-Group == testop, Huntgroup-Name == cyclades
> Service-Type = Administrative-User,
> Framed-Filter-Id = ":group_name=admin;",
> 
> from the -X debug output:
> Mon Mar 17 14:42:34 2014 : Info: [groups] Added My-Group: 'testop' to
> config_items
> 
> but files says:
> Mon Mar 17 14:42:34 2014 : Info: [files] users: Matched entry DEFAULT at
> line 181
> Mon Mar 17 14:42:34 2014 : Info: ++[files] returns ok

  Are you listing "groups" *before* "files" ?

> I thought that being added to config_items means that I can actually check
> against this value?

  Yes, that's what it means.

  Alan DeKok.


More information about the Freeradius-Users mailing list