How to Authorize group from AD
Matthew Newton
mcn at freeradius.org
Fri Feb 1 19:28:13 CET 2019
On Fri, 2019-02-01 at 12:52 -0500, Alan DeKok wrote:
> On Feb 1, 2019, at 10:50 AM, Maicon Luis <maiconlp at hotmail.com>
> wrote:
> > I have done the follow lines on “user” file
> >
> > user1
> > Service-Type = NAS-Prompt-User,
> > Cisco-AVPair = "shell:priv-lvl=15",
> > Fall-Through = Yes
>
> And what are the "right" attributes? I don't know. Read the Cisco
> docs to see what their product needs.
I believe they are the right attributes - at least, I've seen it
working with those before.
So it's either that the RADIUS server isn't returning them (run in
debug mode `radiusd -X` to see), or that there is additional config
needed on the switch.
--
Matthew
More information about the Freeradius-Users
mailing list