> I'm sorry, but I expect people to be able to read the configuration
> file, and make some simple conclusions from it. In this case, you
> expected a configuration which had NO MENTION of "Class" or
> "Filter-Id" to somehow magically use them.
Conclusions are one thing. For those of us who don't know the difference
it is a leap of knowledge.
>
> You're probalby using system authentication. In that case, there's
> a system call used by FreeRADIUS to get the user's password. That
> system call eventually ends up using NIS, but FreeRADIUS doesn't know
> that.
Understood, and that makes sense. I was (logically) jumping past the
functional steps.
>
> I told you. Replace "Group-Name" with "Class" or "Filter-Id".
> Point the "/etc/group" configuration at a group file from the
> /etc/group directory on your system.
Sorry, that wasn't obvious to me from your previous post.
For completeness of this exchange, I added the following to
radiusd.conf:
passwd etc_group {
filename = /etc/group
format = "=Class:::*,User-Name"
hashsize = 50
ignorenislike = no
allowmultiplekeys = yes
delimiter = ":"
}
and then added "etc_group" in the "authorize" section.
Oh, and because I'm using Fedora, the rlm_passwd is not included. I
downloaded the source and rebuilt freeradius using the RH Spec file
after adding "rlm_passwd" to "src/modules/stable".
Now it works! Hurray! Thank you!
Now one more question: is there any way to get FreeRadius to look at the
NIS information, directly or indirectly?
--
John Duino <[EMAIL PROTECTED]>
National Engineering Technology
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
