Hi, > If I understand this correctly, each user who would like to > authenticated would require those access rights and not only laurence?
no. you dont use the login user to do the binding, you use a special user. for testing, you can use root, but for production I'd advice to use a special account that has almost the same level as root - but without eg delete and make credentials. no further support on this from me as its not FreeRADIUS, its LDAP - go and ask on LDAP lists. alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html