-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Am Montag, 21. Juni 2004 14:04 schrieb Christophe Saillard: > Hello, > > I've a TTLS/PAP working configuration with dynamic VLAN allocation. > > Here's a sample of the "users" file : > > userX Crypt-Password == "$1$xxxxxxxxxxxxxxxxxxxxxxxxxxxx" > Tunnel-Type:1 = 13, > Tunnel-Medium-Type:1 = 6, > Tunnel-Private-Group-ID:1 = 4 > > At the authentication's end the NAS put the userX in the vlan "4". > > Now I'd like to do the same with user coming from LDAP storage....but I > don't know where to begin : > > How can I get a group attribute from LDAP and match this with a VLAN id > which will be send to the NAS ? > > Thanks.
hi, You have to edit dictionary.tunnel (perhaps it is done already in 1.0.0pre2) VALUE Tunnel-Type VLAN 13 VALUE Tunnel-Medium-Type IEEE-802 6 and ldap.attrmap: replyItem Tunnel-Type radiusTunnelType replyItem Tunnel-Medium-Type radiusTunnelMediumType replyItem Tunnel-Private-Group-Id radiusTunnelPrivateGroupId There is some good docu in the internet. - -- Dr. Michael Schwartzkopff MultiNET Services GmbH Bretonischer Ring 7 85630 Grasbrunn Tel: (+49 89) 456 911 - 0 Fax: (+49 89) 456 911 - 21 mob: (+49 174) 343 28 75 PGP Fingerprint: F919 3919 FF12 ED5A 2801 DEA6 AA77 57A4 EDD8 979B -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux) iD8DBQFA1tYCqndXpO3Yl5sRAjxfAKDUb130cLPnB4ijRrVdsKiwV7+BIgCglOsI FN+uT8r5TzZn4uTWPnz/I24= =kVHE -----END PGP SIGNATURE----- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html