Fwd: Mac-auth

Dmitriy Andryashin safokoi.sikrone at gmail.com
Fri Feb 22 08:40:29 CET 2019


Help everyone!

I'm working with Freeradius 3.0.15
And trying to implement authentification by MAC and NAS-Port and
NAS-IP-Address and files module.

The solution i found by now is to assign key variable in
mods-available/files

files authorized_macs {
    key = "%{Calling-Station-ID}-%{NAS-Port}-%{NAS-IP-Address}"
    usersfile = ${confdir}/authorized_macs
}

And in authorized_macs have string
00-24-54-05-8D-CB-5002-192.168.100.2

It works.

Is there a neat way to do it? Check attributes separetelly.

For example:
authorized_macs contents:

00-24-54-05-8D-CB
    Cleartext-Password := 00-24-54-05-8D-CB
    NAS-Port == 5002
    NAS-IP-Address = 192.168.100.2
    Reply-Message = "Device with MAC Address %{Calling-Station-Id}
authorized for network access"

I appreciate any help)

-- 
Best regards, Dmitri


More information about the Freeradius-Users mailing list