I have a request to block certain users access to our modem pool.
Users are first authenticated by kerb via PAM. What I would like to do is
have radius then check to see if they are listed in a file and reject them
only if they are listed. If they are not in the file they can logon.
I saw the username authtype example in the manual, is there a way to do
this in a file for a larger number?
Could you do the AuthByPolicy ContinueWhileReject and put this before my
authbypam below?
My handler is below.
Mike Forbes
<Handler Realm=MODEMS>
RewriteUsername s/^([EMAIL PROTECTED]).*/$1/
<AuthBy GROUP>
AuthByPolicy ContinueUntilReject
<AuthBy PAM>
Fork
Service radiusd
</AuthBy>
</AuthBy>
AuthLog Modem_Login_Failures
AcctLogFileName %L/Modems.log
</Handler>
===
Archive at http://www.open.com.au/archives/radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
