"Ivan D. Barrera" <[EMAIL PROTECTED]> wrote: > Is there a way to configure Freeradius to authenticate users using different > "passwd"/"shadow" files to differentiate service by using different SSIDs?
Yes. > I assume I can have two "similar" users: > > anonymous cisco_avpair=="ssid=1" > Service-Type = Framed-User > > anonymous cisco_avpair=="ssid=2" > Service-Type = Framed-User > > but how can I tell freeradius to authenticate the "first" user based on a > different database than the other one? Can I? Yes. DEFAULT cisco_avpair=="ssid=1", Autz-Type = SSID1 Service-Type = Framed-User DEFAULT cisco_avpair=="ssid=2", Autz-Type = SSID2 Service-Type = Framed-User And in the "authorize" section, create two Autz-Type blocks: Autz-Type SSID1 { ssid1 } Autz-Type SSID2 { ssid2 } In the "modules" section, create two copies of the "passwd" module: passwd ssid1 { ... point to passwd file for ssid1 } passwd ssid2 { ... point to passwd file for ssid2 } Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html