[EMAIL PROTECTED] ([EMAIL PROTECTED]) wrote: > i simply cannot get this thing to work. i thought i could get this thing > working with cisco-avpairs; but either it does not work with these tags or i > did make several mistakes (which wouldn't make me wonder, really). when > debugging radius in an alternate session on the nas you can see that those > avpairs are being transmitted, but even if you enter the correct password > you'll see a friendly "authorization failed" in the user's window and the > session is cancelled. if you disable those avpairs, the user can log on > without any problems.
So... what does the Cisco documentation say about this? Once the RADIUS server responds with an Access-Accept, then if the NAS rejects the user, the problem can be fixed ONLY on the NAS. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
