Greetings list members.
I am testing free radius currently and have a couple questions.
I use the LDAP module for authentication. I have two realms, each on
separate DN's. How can I have two separate ldap configurations?
It would be neat to be able to specify ldap_realma { binddn= etc..} and
then ldap_realmb { binddn= etc..}, then do a fall through type of deal in
the authenticate block. Is there current structure for this,
or do I need a second radius server/implementation to do this properly?
Secondly, do we have the ability to send attributes back to specific
radius clients? I like to apply SMTP filters to NAS devices via
attributes such as 242, but this becomes difficult when you have some
ascend, cisco, portmaster, and cvx boxes on your network.
I need to be able to do attributes X for client A (or maybe client group
A?) and attributes N for client B.
If anyone has any insight, suggestions, or simply wants to point me to
some more documentation please reply.
Thanks much,
--JST
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
