overwriting ldap radiusprofile according to realms?
Hi list, we are storing our user data in openLDAP with a radiusProfileDN attribute, which is sent back by the freeradius server (v.1.1.3, on SLES10) as expected. The profile contains information for the vlan of user. We now would like to have the possibility to let the user login in a special vlan (the internetcafe) and thought of doing this with realms, which means the user has to login with username or [EMAIL PROTECTED], setting the following in the users file: /etc/raddb/users DEFAULT User-Name =~ @ic$, User-Profile := cn=InternetCafe,ou=Netconfig,o=Test This works if the users has no radiusprofileDN stored in LDAP, but if he has such an attribute the profile data from the user is used, not the cn=InternetCafe. How can I overwrite the value for radiusprofiledn if the user appends @ic to this username? Or is there a better way to achieve this (changing the profile data / vlan according to login)? Thanks in advance for any help! Reagards Markus -- Markus Krause email: [EMAIL PROTECTED] Mogli-Soft: Support for Mac OS X, Webmail/Horde, LDAP, RADIUS by order of the Computing Center of the Max-Planck-Institute of Biochemistry Tel.: 089 - 89 40 85 99 Fax.: 089 - 89 40 85 98 -- This message was sent using https://webmail2.biochem.mpg.de If you encounter any problems please report to [EMAIL PROTECTED] - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
LDAP radiusprofile
HI, I am currently setting up freeradius with openldap as a backend for testing. I have read through the various walk-throughs and have noticed that most show the radiusprofile objectclass to be structural. But looking at the RADIUS-LDAPv3.schema, it shows that objectclass as auxiliary. I am guessing that this is a recent change. What are most people using for the structural objectclass? Currently I am looking to use the ldap server for radius only. BTW, great job on getting freeradius to 1.0! Thanks, Dave - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: LDAP radiusprofile
On Tue, 16 Nov 2004, Dave wrote: HI, I am currently setting up freeradius with openldap as a backend for testing. I have read through the various walk-throughs and have noticed that most show the radiusprofile objectclass to be structural. But looking at the RADIUS-LDAPv3.schema, it shows that objectclass as auxiliary. I am guessing that this is a recent change. What are most people using for the structural objectclass? Currently I am looking to use the ldap server for radius only. Take a look at the person,organizationalPerson,ietOrgPerson objectclass hierarchy BTW, great job on getting freeradius to 1.0! Thanks, Dave - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
