Use update control for VLAN with ntlm_auth
Scott Armitage
S.P.Armitage at lboro.ac.uk
Wed Oct 14 21:06:09 CEST 2015
> On 14 Oct 2015, at 17:50, Torsten Wilms <torsten at wilms-ac.de> wrote:
>
> Hello @all
>
>
> I use free radius version 3.0.10 and the ntlm_auth for authenticate users via 802.1x over the AD
> Now i wan’t to setup switches with dynamic VLAN configuration.
>
> I tried to use in the authorize section unter default and inner-tunnel
>
>
>
> How can i use update control if ntlm_auth was successful?
>
This kind of work is done in post-auth. In your inner tunnel add something like:
post-auth {
update reply {
Tunnel-Private-Group-ID := 8
Tunnel-Type = VLAN
Tunnel-Medium-Type = IEEE-802
Session-Timeout = 28800
Termination-Action = RADIUS-Request
}
regards
Scott Armitage
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 204 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20151014/10073fac/attachment.sig>
More information about the Freeradius-Users
mailing list