Group policy on freeradius like on microsoft NPS server

Matthew Newton mcn at
Fri Jul 17 13:35:07 CEST 2020

On 17/07/2020 10:49, MD. NUR KHAKIM A`ZIIZUDIN wrote:
> i'm new to freeradius, recently we are implementing freeradius as AAA server to authenticate user throug aruba wifi controller
> our setup is openldap + freeradius + aruba


> we use AD + NPS server + aruba before, and have implemented group policy on our network configuration that read filter-id attribute
> so how we do the same thing on freeradius, i've been searching on google and didn't find anything.
> if anyone know how to add group policy for openldap + freeradius + aruba setup please let me know how to do it.

"Group policy" is Microsoft wording. You need to work out what that 
actually means in terms of what the RADIUS server is doing.

i.e. what attributes do you need to send back when a particular request 
comes in? Where is the data in those attributes stored?

Then write a configuration/policies that look up the data based on the 
incoming request and sends the correct attributes back in the reply. The 
NAS documentation (sounds like Aruba in your case) should give you an 
indication of what to send back.

The easiest thing if you don't know already is probably to look at the 
replies your old system is sending, and then replicate that in FreeRADIUS.


More information about the Freeradius-Users mailing list