Re: deny access with huntgroups

2011-01-30 Thread tragus
ssage in context: http://freeradius.1045715.n5.nabble.com/deny-access-with-huntgroups-tp2780330p3364120.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: deny access with huntgroups

2009-08-28 Thread mikoi
ious questions. /Mika -- View this message in context: http://www.nabble.com/deny-access-with-huntgroups-tp25151127p25186064.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: deny access with huntgroups

2009-08-28 Thread Ivan Kalik
> >> You have to enforce reject: > >> if(SQL-Group == "vpnuser") { >> ok >> } >> else { >> reject >> } > >> Ivan Kalik >> Kalik Informatika ISP > Alright. that makes sense. > But can the if(xxx) contain several sql-queries to the database? > The username and groupname from radusergroup and

Re: deny access with huntgroups

2009-08-28 Thread mikoi
ou are helping me alot. Thanks. /Mika -- View this message in context: http://www.nabble.com/deny-access-with-huntgroups-tp25151127p25185118.html Sent from the FreeRadius - User mailing list archive at Nabble.com. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Re: deny access with huntgroups

2009-08-27 Thread Ivan Kalik
> > Finally. I got it working with the files (users and huntgroups), but i > need > this to work in SQL instead and seem to run into the same problem. All > NAS-IP:s are accepted. Why?? Because if sql group doesn't match it is ignored - user is not rejected. > I am so close but not quite there. P

Re: deny access with huntgroups

2009-08-27 Thread mikoi
OM radreply WHERE username = 'sqluser' ORDER BY id [sql] expand: SELECT groupname FROM radusergroup WHERE username = '%{SQL-User-Name}' ORDER BY priority -> SELECT groupname FROM radusergroup WHERE username = 

Re: deny access with huntgroups

2009-08-26 Thread Ivan Kalik
> How can i deny access for all other users that donĀ“t have a Huntgroup-Name > defined and if NAS-IP-Address is not included or wrong in the request = > deny? > > My current configuration accepts all authentications as long the password > is > correct. > > users: > localuser Huntgroup-Name == "vpn"

deny access with huntgroups

2009-08-26 Thread mikoi
t;vpn", Cleartext-Password := "localuser" huntgroups: vpn NAS-IP-Address == 164.9.158.65 I am missing something. Please point me in the right direction. Thanks. -- View this message in context: http://www.nabble.com/deny-access-with-huntgroups-tp25151127p25151127.html Sent from t