Phil Mayers wrote: >Normally you simply configure the module correctly i.e. prefix the key with a * and reply items with = as per "man rlm_passwd" > >modules { > passwd mac2vlan { > filename = /etc/raddb/mac2vlan > format = "*MyMac:=VMPS-VLAN-Name" > hashsize = 100 > } >} > >...then call that module in your unlang section: > >vmps { > ... stuff > # now call the passwd module > mac2vlan >} > >...however, the "vmps" section is really a re-named "post-auth" section, and the rlm_passwd module does not have a post-auth >handler; so you need (I think) to do this: > >vmps { > ...stuff > # call the passwd "authorize" method > mac2vlan.authorize >} > >This is not documented AFAICT, but I've seen Alan mention it in a mailing list post and the code seems to be present in 2.0.3
Ok, that let me get it working. I had to use mac2vlan.authorize instead of just the module name. Perhaps I should have mentioned I'm running 2.0.1 on FreeBSD (2.0.3 doesn't seem to be available on the ports collection yet). I still have one more problem. I want it to call the mac2vlan module and if the mac address isn't found in the file, assign our public vlan group to the VMPS-VLAN-Name attribute. So I am trying to get the module return code from mac2vlan. But when I do the following... server vmps { ... stuff vmps { ... stuff mac2vlan.authorize If (!ok) { update reply { VMPS-VLAN-Name = "Public" } } } } The server refuses to start at all until I comment out the if statement. Did I forget to read something on module return codes or am I calling it wrong? -- View this message in context: http://www.nabble.com/vmps-documentation--tp16315996p16418725.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html