I have a request to block certain users access to our modem pool. Users are first authenticated by kerb via PAM. What I would like to do is have radius then check to see if they are listed in a file and reject them only if they are listed. If they are not in the file they can logon.
I saw the username authtype example in the manual, is there a way to do this in a file for a larger number? Could you do the AuthByPolicy ContinueWhileReject and put this before my authbypam below? My handler is below. Mike Forbes <Handler Realm=MODEMS> RewriteUsername s/^([EMAIL PROTECTED]).*/$1/ <AuthBy GROUP> AuthByPolicy ContinueUntilReject <AuthBy PAM> Fork Service radiusd </AuthBy> </AuthBy> AuthLog Modem_Login_Failures AcctLogFileName %L/Modems.log </Handler> === Archive at http://www.open.com.au/archives/radiator/ Announcements on [EMAIL PROTECTED] To unsubscribe, email '[EMAIL PROTECTED]' with 'unsubscribe radiator' in the body of the message.