On Thu, 19 Sep 2002, Homer Parker wrote:
> Having a bit of a time getting an Orinoco AS-2000 to get an ip address
> from the ippool module.. I authenticate just fine, it just falls through
> the users file to the dial-up stuff before it gets a match... Here's some
> info:
>
> <users file>
>
> DEFAULT NAS-IP-Address == 172.16.1.8, Auth-Type := Pam, Group ==
> "wireless64", Pool-Name := "wireless64"
>
> DEFAULT Auth-Type := Pam, Group == "wireless64", Pool-Name := "wireless64"
> DEFAULT Group == "wireless128", Pool-Name := "wireless128"
> DEFAULT Group == "wireless192", Pool-Name := "wireless192"
> DEFAULT Group == "wireless256", Pool-Name := "wireless256"
>
> DEFAULT Auth-Type := Pam, Huntgroup-Name == "wireless64", Pool-Name :=
> "wireless64"
> DEFAULT Huntgroup-Name == "wireless128", Pool-Name := "wireless128"
> DEFAULT Huntgroup-Name == "wireless192", Pool-Name := "wireless192"
> DEFAULT Huntgroup-Name == "wireless256", Pool-Name := "wireless256"
>
> <radiusd.conf>
>
> authorize {
> preprocess
> files
> }
> authenticate {
> pam
> }
I am not sure that you can do group membership checks with the pam module. Try
using the unix module for that (just put it in the instantiate section to
register it's groupcmp function).
--
Kostas Kalevras Network Operations Center
[EMAIL PROTECTED] National Technical University of Athens, Greece
Work Phone: +30 10 7721861
'Go back to the shadow' Gandalf
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
