Allow access to wrong password

Alan DeKok aland at deployingradius.com
Wed Apr 13 15:09:10 CEST 2016


On Apr 13, 2016, at 8:51 AM, Aurélio de Souza Ribeiro Neto <netolistas at mpc.com.br> wrote:
>    Is it possible to allow access to a different POOL for users who authenticate with invalid login or password?

  Only for people who aren't using EAP.

>    Users who connect with correct credentials would use the POOL according to their groups, and users with login and password invalids would be directed to another POOL? I hope I was clear.

  Sure.  In the "authenticate" section, do:

authenticate {
	...
	Auth-Type pap {
		pap {
			reject = 1
		}

		if (reject) {
			update control {
				Pool-Name := "rejected_pool"
			}

			ok
		}

	}

	...
}

  You'll have to customize it for your system, but the general idea is there.

  Alan DeKok.




More information about the Freeradius-Users mailing list