Wifi + Active Directory without ntlm
Клеусов Владимир Сергеевич
Kleusov.Vladimir at wildberries.ru
Thu May 28 14:48:54 CEST 2020
How do I start debag to see what happens when I connect ? freeradius -X can do this ?
> 28 мая 2020 г., в 15:07, Alan DeKok <aland at deployingradius.com> написал(а):
>
>
>
>> On May 28, 2020, at 7:41 AM, Клеусов Владимир Сергеевич via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
>>
>> If /etc/freeradius/users
>>
>> DEFAULT Auth-Type := LDAP, LDAP-Group == «test_group"
>> DEFAULT Ldap-Group != «test_group", Auth-Type := Reject
>>
>> Then all users get access regardless of their membership in this group. Why can this happen ?
>
> Well, the debug output should tell you.
>
> But this kind of thing is generally easier to do in an "unlang" policy, instead of the "users" file:
>
> if (LDAP-Group == "test") {
> update control {
> Auth-Type := ldap
> }
> }
> else {
> reject
> }
>
> Alan DeKok.
>
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list