I managed to get a oracle-freeradius-cisco2600 combo working up to the point where i want network authorization done i.e. filling radreply table with framed-filter-id's for SOME users and getting the cisco to apply the right acl's. Well, first step: aaa authorization network default group radius Now, all my users (who don't have anything but framed-protocol and session-timeout in radreply) are authenticating OK (or so the radiusd says) but the cisco barks (something about authorization failed) and gets them out. I configured a user to get framed-filter-id in reply and configured the related acl's on cisco. Now, this user authenticates and even gets those filters i set, to say nothing about the fact that said user doesn't get disconnected. IF you need more info, i'll give it right away. >From what i see at the first glance, if i enable cisco network authorization through radius, all users have to get framed-filter in reply or else they are refused by the cisco. I may be wrong, and i want to be wrong, so that one of you could shed some light in. Please respond ASAP TIA.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
