I read a included document about freeradius to ldap, but I a forigner
and difficult undersand content. Can we suggest a any content with
example, how can I use group to ldap?
Thanks!
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
All,
Currently i use this configuration to assign clients an ip after
successfull authentication (mac authentication):
user User-Password == password
Tunnel-Type = VLAN,
Tunnel-Medium-Type = IEEE-802,
Tunnel-Private-Group-id = 20
This works, but now we are deploying a cisco iptel solution.
The phones need to be in a tagged vlan instead of an untagged.
Are you sure about that? You tag VLANs on a trunk port. And that port
will be connected to the upstream device, not your phone.
Ivan Kalik
Kalik Informatika ISP
-
List info/subscribe/unsubscribe? See
[EMAIL PROTECTED]
wrote on 20-02-2008 11:36:27:
The phones need to be in a tagged vlan instead of an untagged.
Are you sure about that? You tag VLANs on a trunk port. And that port
will be connected to the upstream device, not your phone.
The phone is some sort of switch.
Currently the edge
Ivan Kalik wrote:
The phones need to be in a tagged vlan instead of an untagged.
Are you sure about that? You tag VLANs on a trunk port. And that port
will be connected to the upstream device, not your phone.
No, it's quite common for VoIP hardphones to have a passthrough port -
effectively
For interest: obviously the phone needs to know the tag number. LLDP-MED
is the normal way of signalling this, or CDP on all-Cisco networks.
Responding to the OP, whether you can do this and the syntax to use
depends on your switch. For example with 3Com 4400 and (I think) Extreme
x450
Thanks for the info so far.
Is there a howto on getting this to work?
Questions I still have on this are.
1) Do I need to extend my Schema to include Cisco-AV-Pair if so is
there an example I can copy
2) What is the exact line that I need to add to my ldap.attrmap file to
then refer to
Hi David,
Have you tried putting \n to see if that puts a line break into the
response? Whether the RADIUS client will barf on that is another
matter ;-)
Rgds,
Guy
On 20/02/2008, David W Bell [EMAIL PROTECTED] wrote:
David W Bell wrote:
Thanks for the info so far.
Is there a howto
yep - tried that :)
Hi David,
Have you tried putting \n to see if that puts a line break into the
response? Whether the RADIUS client will barf on that is another
matter ;-)
Rgds,
Guy
On 20/02/2008, David W Bell [EMAIL PROTECTED] wrote:
David W Bell wrote:
Thanks for the info so far.
David W Bell wrote:
Thanks for the info so far.
Is there a howto on getting this to work?
Questions I still have on this are.
1) Do I need to extend my Schema to include Cisco-AV-Pair if so is
there an example I can copy
2) What is the exact line that I need to add to my ldap.attrmap file
You most likely want operator += to add multiple attributes with the same
name.
http://wiki.freeradius.org/Operators
Ivan Kalik
Kalik Informatika ISP
Dana 20/2/2008, David W Bell [EMAIL PROTECTED] piše:
yep - tried that :)
Hi David,
Have you tried putting \n to see if that puts a line
That is what I am doing, however they append to the current line, I
would like to put a linebreak at the end of each one to make them flow
properly
David
You most likely want operator += to add multiple attributes with the same
name.
http://wiki.freeradius.org/Operators
Ivan Kalik
Kalik
David W Bell wrote:
That is what I am doing, however they append to the current line, I
would like to put a linebreak at the end of each one to make them flow
properly
Can you say what you have configured, and what the server sends? i.e.
DEBUG output?
Alan DeKok.
-
List
A very nice article
http://www.ibm.com/developerworks/linux/library/l-radius/
Nikolay G. Petrov [EMAIL PROTECTED] wrote:
I read a included document about freeradius to ldap, but I a forigner
and difficult undersand content. Can we suggest a any content with
example, how can I use group to
Note: forwarded message attached.
Never miss a thing. Make Yahoo your home page.
http://www.yahoo.com/r/hs---BeginMessage---
upgraded to FR2.0.2 to find out that users file is
being read but only
I am looking to migrate from text files to an ldap directory.
What is the best/easiest way to do this:
-setup ldap, copy all data to the ldap from the start
-setup ldap and gradually migrate (is it possible to have part of the
clients in flat files and others in ldap?)
This e-mail is property of
Agent Smith wrote:
user1 Auth-Type = Local, Cleartext-Password =
abc123, Huntgroup-Name == fetch
This should be:
user1 Cleartext-Password := abc123, Huntgroup-Name ...
i.e. Don't set Auth-Type.
This will work in 1.1.7, too.
=
17 matches
Mail list logo
