Mac-auth
Alan DeKok
aland at deployingradius.com
Fri Feb 22 21:30:08 CET 2019
On Feb 22, 2019, at 2:07 AM, Dmitriy Andryashin <safokoi.sikrone at gmail.com> wrote:
> I'm working with Freeradius 3.0.15
> And trying to implement authentification by MAC and NAS-Port and
> NAS-IP-Address and files module.
>
> The solution i found by now is to assign key variable in
> mods-available/files
>
> files authorized_macs {
> key = "%{Calling-Station-ID}-%{NAS-Port}-%{NAS-IP-Address}"
> usersfile = ${confdir}/authorized_macs
> }
I'm nit sure what...
> And in authorized_macs have string
> 00-24-54-05-8D-CB-5002-192.168.100.2
>
> It works.
>
> Is there a neat way to do it? Check attributes separetelly.
Yes. Read the documentation for the "users" file...
00-24-54-05-8D-CB NAS-IP-Address == 192.168.100.2, NAS-Port == 5002, Cleartext-Password := "00-24-54-05-8D-CB"
Reply-Message = "Device with MAC Address %{Calling-Station-Id}
authorized for network access"
That will do what you want.
Alan DeKok.
More information about the Freeradius-Users
mailing list