Machine auth LDAP group checking

Matthew Newton mcn4 at leicester.ac.uk
Mon Jul 18 13:34:45 CEST 2016


On Mon, Jul 18, 2016 at 07:23:43AM -0400, Dave Aldwinckle wrote:
> including files in directory /etc/raddb/sites-enabled/
> including configuration file /etc/raddb/sites-enabled/default
> /etc/raddb/sites-enabled/default[852]: Parse error in condition
> /etc/raddb/sites-enabled/default[852]: (&ldap.host-LDAP-Group ==
> "uw-WiFi-Managed")
> /etc/raddb/sites-enabled/default[852]:   ^ Invalid request qualifier
> Errors reading or parsing /etc/raddb/radiusd.conf

My suspicion: try without the "." in the attribute name. It's used
for other things so personally I'd expect it may cause trouble.

Matthew


> On 16-07-14 04:16 PM, Alan DeKok wrote:
> >On Jul 14, 2016, at 12:20 PM, Dave Aldwinckle <daldwinc at uwaterloo.ca> wrote:
> >>(9)       if (ldap.host-LDAP-Group == "uw-WiFi-Managed") {
> >>(9)       if (ldap.host-LDAP-Group == "uw-WiFi-Managed")  -> FALSE
> >  Use:
> >
> >	if (&ldap.host-LDAP-Group == "uw-WiFi-Managed")
> >
> >   Alan DeKok.
> >
> >-
> >List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

-- 
Matthew Newton, Ph.D. <mcn4 at leicester.ac.uk>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>


More information about the Freeradius-Users mailing list