Hi all
I am using freeradius 0.5 on solaris 7.0 with cisco
servers. On server radius i defined two groups with
group-names "disabled" and "single". then i created
two users: test1 belonging to disabled and test2
belonging to single. Then in users file I have:
DEFAULT Group := "disabled", Auth-Type := Reject
Reply-Message = "Not authorized"
DEFAULT Group := "single", Auth-Type :=System,
Framed-Protocol := PPP
Framed-Protocol = PPP,
Framed-Compression = Van-Jacobson-TCP-IP
With this configuration, both users are matched on
first group, so both are rejected authorization. If i
write the lines related to Group := "single" earlier,
then none of the two users is rejected. I also tried
following options:
(1) chaged the := sign in group attribute to == or to
= only. In case of == or = eveything is rejected.
(2) removed the word DEFAULT and tried all options of
:= , ==, = and it did not started radius.
Now please let me know, how can define two groups so
that members of one group are blocked while the others
are allowed access to the network.
Thanks
Aqeel
__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
