Freeradius 3.2.0 with dynamic clients on LDAP

Igor Sousa igorvolt at gmail.com
Sun Sep 4 13:50:14 UTC 2022 

Hi Alan,

I googled it more and I found this post
https://lists.freeradius.org/pipermail/freeradius-users/2014-August/073292.html
(yeah, I know this happened 8 years ago). I've understood that the rlm_raw
module is necessary to access the Called-Station-Id attribute on
site-enabled/dynamic-clients (
https://lists.freeradius.org/pipermail/freeradius-users/2015-March/076430.html
and , but you warned us to not use the rlm_raw module. I don't find this
module in https://freeradius.org/modules/. Then, is it possible to access
NAS MAC addresses in dynamic-clients configuration in Freeradius 3.2?

--
Igor Sousa


Em sáb., 3 de set. de 2022 às 16:46, Igor Sousa <igorvolt at gmail.com>
escreveu:

> Hi Alan,
>
> I've seen sites-available/dynamic-clients file, but this file has only an
> example using Packet-Src-IP-Address. As I intend to use the MAC address as
> CN, is the Called-Station-ID attribute available to use in dynamic-clients?
>
> --
> Igor Sousa
>
>
> Em sex., 2 de set. de 2022 às 21:35, Alan DeKok <aland at deployingradius.com>
> escreveu:
>
>> On Sep 2, 2022, at 5:26 PM, Igor Sousa <igorvolt at gmail.com> wrote:
>> > I work at a company with more than 300 APs and this number only
>> increases.
>> > To permit each AP to connect to Freeradius, I've configured a specified
>> > VLAN with DHCPv4 and I've delivered to APs. The clients.conf has looked
>> > like this:
>> >
>> > client dhcp-aps {
>> > ipaddr         = 10.20.0.0/20
>> > secret         = testing123
>> > shortname  = dhcp-aps
>> > nastype       = other
>> > }
>>
>>   That's fine.
>>
>> > But I would like to store the clients configuration on a LDAP base using
>> > radiusClient scheme where the radiusClientIdentifier is the AP's MAC
>> > address. Then I intend to configure dynamic clients to allow the same
>> > created network to use Freeradius, but it will use Called-Station-ID to
>> > auth the AP on LDAP.
>> >
>> > I've googled it and found it
>> > https://sourceforge.net/p/hotcakes/wiki/YfiTechDynamicClients/ using
>> > Freeradius 2.1.12. Not 3.x though. Is it possible?
>>
>>   See sites-available/dynamic-clients
>>
>>   There are examples and documentation for this.
>>
>>   Alan DeKok.
>>
>> -
>> List info/subscribe/unsubscribe? See
>> http://www.freeradius.org/list/users.html
>>
>

More information about the Freeradius-Users mailing list