Hello Guys,
I need the following in a wireless environment, using 802.1X authentication
based on LDAP, need to do dynamic VLAN assignment.
Need to consult an LDAP attribute, and from this attribute to determine
which VLAN to send to my wireless controler.
I need something like this:
...
if ( habitantWirelessActive == FALSE ){
update reply {
Tunnel-Type := "VLAN"
Tunnel-Medium-Type := "IEEE-802"
Tunnel-Private-Group-Id := 100
}
}else{
update reply {
Tunnel-Type := "VLAN"
Tunnel-Medium-Type := "IEEE-802"
Tunnel-Private-Group-Id := 30
}
}
...
habitantWirelessActive the attribute is the LDAP, each user has this
attribute in a Boolean set to TRUE or FALSE.
How can I make this check?
Another question is about where I make this verification, the correct
location is the session post-auth?
I thank the attention.
João
--
João Paulo de Lima Barbosa
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
