Nils Arvid =?ISO-8859-1?B?UvhuaG92ZGU=?= <[EMAIL PROTECTED]> wrote:
> > If you're willing to write an 'rlm_group' which used a text file or
> > DB, that would be a good thing.
...
> I am not able to see that this functionality exists yet, is that true?
See 'rlm_passwd'. It handles groups, too. And there's even a
sample configuration for it in 'radiusd.conf'
> I'm using FR for admin-access to the routers in our network, is
> there a way to assign different enable passwords for different groups
> of routers even if they use the same radius-server?
Sure. Use multiple versions of rlm_passwd to have different group
files. Use more versions to have different passwd files. Then, use
the 'users' file to do something like:
DEFAULT NAS-IP-Address = 1.2.3.4, Group == "bar", Auth-Type := Passwd-1
...
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
