"Mike Cisar" <[EMAIL PROTECTED]> wrote: > My problem/question is this... is it possible to set up somehow so that I > can create a couple of Unix groups (call them poola and poolb) and then > control whether the login is denied partially on the RADIUS server that is > asking.
I would suggest using rlm_passwd to create groups specifically for the RADIUS server. See "man rlm_passwd" in 1.0.1. It describes exactly this scenario. > Denying from a group I can do... but how to deny from a group > conditionally on which radius server the request is coming from is what I > can't quite figure. DEFAULT Group == "poola", Client-IP-Address == ip.of.pool.a., Auth-Type := Reject Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html