How to add VAP based on LDAP group membership
Alan DeKok
aland at deployingradius.com
Mon Feb 22 14:28:14 CET 2016
On Feb 22, 2016, at 8:01 AM, Thomas Stather <Thomas.Stather at mpimf-heidelberg.mpg.de> wrote:
...
> if (&Calling-Station-Id && (&Calling-Station-Id =~ /^${policy.mac-addr-regexp}$/i)) {
> update control {
Note: control.
>
> (53) if ("%{ldap1:ldap:///ou=hosts,dc=testdomain,dc=de?macAddress?sub?macAddress=%{LDAP-MacAddress}}") {
Note: no "control".
> rlm_ldap (ldap1): Reserved connection (8)
> (53) Performing search in "ou=hosts,dc=testdomain,dc=de" with filter "macAddress=", scope "sub"
As expected, there's no LDAP-MacAddress. There *is* a control:LDAP-MacAddress.
> (53) Waiting for search result...
> (53) Search returned no results
As expected.
Alan DeKok.
More information about the Freeradius-Users
mailing list