Re: Problem with LDAP and Groups

2007-10-17 Thread tnt
>Huntgroups file > >packeteer_read_only NAS-IP-Address == 10.17.69.12 > Delete this. >Users file > > 165 DEFAULT Huntgroup-Name == "packeteer_read_only",Ldap-Group == > packeteer_read_only,User-Profile := > "uid=packeteer_read_only,ou=profiles,ou=radius,dc=csctus,dc=net", Auth-Type > := LDAP

Re: Problem with LDAP and Groups

2007-10-16 Thread Bryan Evege
Message: 3 Date: Thu, 11 Oct 2007 23:23:45 +0100 From: <[EMAIL PROTECTED]> Subject: Re: Problem with LDAP and Groups To: "FreeRadius users mailing list" Message-ID: <[EMAIL PROTECTED]> Content-Type: text/plain; charset=ISO-8859-2

Re: Problem with LDAP and Groups

2007-10-13 Thread Alan DeKok
Bryan Evege wrote: ... Please edit your posts to the list. It's annoying to have to scroll through reams of headers and old messages in order to see your reply. > Thank you for the reply. If I change the fall through to yes it still > matches as many groups as the user is in. How can I tell

Re: Problem with LDAP and Groups

2007-10-11 Thread tnt
Ivan Kalik Kalik Informatika ISP Dana 11/10/2007, "Bryan Evege" <[EMAIL PROTECTED]> piše: >Message: 6 >> Date: Thu, 11 Oct 2007 21:13:21 +0100 >> From: <[EMAIL PROTECTED]> >> Subject: Re: Problem with LDAP and Groups >> To: "FreeRadius u

Re: Problem with LDAP and Groups

2007-10-11 Thread Bryan Evege
Message: 6 Date: Thu, 11 Oct 2007 21:13:21 +0100 From: <[EMAIL PROTECTED]> Subject: Re: Problem with LDAP and Groups To: "FreeRadius users mailing list" Message-ID: <[EMAIL PROTECTED]> Content-Type: text/plain; charset=ISO-8859-2 If I change the fall through t

Re: Problem with LDAP and Groups

2007-10-11 Thread tnt
>If I change the fall through to yes it still matches as many groups as the >user is in. How can I tell freeradius which attributes to send back? If you want to send sets of attributes according to the NAS user is trying to log into use huntgroups. >For example, bevege is a member of the followi

Re: Problem with LDAP and Groups

2007-10-11 Thread Bryan Evege
body 'help' to [EMAIL PROTECTED] You can reach the person managing the list at [EMAIL PROTECTED] When replying, please edit your Subject line so it is more specific than "Re: Contents of Freeradius-Users digest..." Today's Topics: 1. Re: Problem w

Re: Problem with LDAP and Groups

2007-10-11 Thread Alan DeKok
Bryan Evege wrote: > Here's the problem. When a user logs in and is a member of more than > one group radius only uses the first one to match. I've included the > users file below. In which you tell it to stop matching after the first one. > DEFAULT Ldap-Group == packeteer_read_only,User-Prof

Re: Problem with LDAP and Groups

2007-10-10 Thread tnt
You can group devices in huntgroups and add Hungroup-Name to those DEFAULT profiles. Ivan Kalik Kalik Informatika ISP Dana 10/10/2007, "Bryan Evege" <[EMAIL PROTECTED]> piše: >Hello all. First off here's what I want to accomplish in the end. Use >LDAP as the backend to store all user informat

Problem with LDAP and Groups

2007-10-10 Thread Bryan Evege
Hello all. First off here's what I want to accomplish in the end. Use LDAP as the backend to store all user information including radius attributes, shell info and access to specific devices in specific locations. For example, Johnny needs access to all linux boxes in Atlanta and priv-level