Freeradius 3.2.0 with dynamic clients on LDAP

Alan DeKok aland at
Sat Sep 3 00:35:35 UTC 2022

On Sep 2, 2022, at 5:26 PM, Igor Sousa <igorvolt at> wrote:
> I work at a company with more than 300 APs and this number only increases.
> To permit each AP to connect to Freeradius, I've configured a specified
> VLAN with DHCPv4 and I've delivered to APs. The clients.conf has looked
> like this:
> client dhcp-aps {
> ipaddr         =
> secret         = testing123
> shortname  = dhcp-aps
> nastype       = other
> }

  That's fine.

> But I would like to store the clients configuration on a LDAP base using
> radiusClient scheme where the radiusClientIdentifier is the AP's MAC
> address. Then I intend to configure dynamic clients to allow the same
> created network to use Freeradius, but it will use Called-Station-ID to
> auth the AP on LDAP.
> I've googled it and found it
> using
> Freeradius 2.1.12. Not 3.x though. Is it possible?

  See sites-available/dynamic-clients

  There are examples and documentation for this.

  Alan DeKok.

More information about the Freeradius-Users mailing list