--- [EMAIL PROTECTED] wrote: > >Is there a better way, using radius?
> No. Once user is authenticated radius has nothing to > do with them (you > say that they can increase privileges after > authentication). Can't you > put them in jail. Yeah, I would eventually do that, if there is no 'better way'. But usually the App. administrators complain that they are crippled by insufficient privileges. So I am looking for something more creative ... :) And so, what I really meant by a 'better way' was like a way to tell pam_radius_auth, to use a certificate instead of a PSK! ... or something like that ... Hey, but thanks Ivan, for the suggestion - will lock them up, if I can't find a better way! Regards, suraj. ____________________________________________________________________________________ Looking for last minute shopping deals? Find them fast with Yahoo! Search. http://tools.search.yahoo.com/newsearch/category.php?category=shopping - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html