You can use LDAP in the authorize section to accomplish this. Is the
group name you are checking against static? Is it
sometimes/always/never the primary group for the user?
Group name is static, never the primary group for the user. What is
added to the user file for this? Is it similar to
What is added to the user file for this? Is it similar to below:
Do you need those reply attributes returned? If not, you may not need
anything in the users file. I don't have anything in mine, but I'm not
using radius for dial-up/PPP.
Can I simply use the:
Okay I've been following the Wiki for Active Directory Integration but
now I'm stuck.
I'm successful at getting the machine to join the AD with Samba3, I
have NTLM_AUTH working from the command line to challenge for the user
and return successful.
Next part is getting FreeRadius to use this
I also need to check that the user is a member of a particular group
in Active Directory before Access-Accept is sent - do I fall back to
LDAP for this?
You can use LDAP in the authorize section to accomplish this. Is the
group name you are checking against static? Is it
4 matches
Mail list logo