ldap group membership check issue

Jérôme BERTHIER Jerome.Berthier at inria.fr
Fri Oct 27 13:55:37 CEST 2017


Hi

In the file users, I guess you can just do

DEFAULT chtpzldap-LDAP-Group == "CN=WiFi_CHTPZ,OU=WiFi,OU=CHTPZ,DC=chtpz,DC=ru"
	Tunnel-Private-Group-ID := "165"

DEFAULT Auth-Type := Reject
         Reply-Message = "Group do not match"

It will return the vlan only if the authentication stage is correct.

Regards,

-- 
Jérôme BERTHIER


-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3670 bytes
Desc: Signature cryptographique S/MIME
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20171027/1ad6f2fe/attachment.bin>


More information about the Freeradius-Users mailing list