John Keimel <[EMAIL PROTECTED]> wrote:
> What we'd rather do is allow access based on the value of access_attr .
> So rather than just allowing if it exists, we might later pass on some
> extra rights to people in different groups. vpntype: fooor
> vpntype: bar vpntype: baz - whatever t
I've a FreeRADIUS server (1.0.2, from debian stable) that is set up to
authenticate users of a VPN into the network.
I've presently got the firewall talking to FreeRADIUS which then talks
to LDAP and check the existence access_attr: vpntype
If the users profile has the attribute of vpntype in
2 matches
Mail list logo