On Mon, 17 Feb 2003 20:31:50 -0600
Robert Canary <[EMAIL PROTECTED]> wrote:
> You would have to cause a special notation on the user name. (ie PPPfoo
> for dial-up)
>
> Then let the freeradius "users" file strip the PPP and set the
> auth-type....I think.
For setting Auth-Type:=BALA I must have 'BALA' in the authenticate {}
section. But the SQL module doesn't have such method. I use external
program for authentication:
8<---- /etc/raddb/users ---------------
DEFAULT Service-Type == Framed-User
Exec-Program-Wait = '/etc/raddb/scripts/ppp_sql_auth.sh -u %u'
8<-------------------------------------
>
> or let one has precedents over the other. If you include both, then if
> one auth fails it will fall through and the next will catch it.
I've tried. It doesn't matter.
>
> May I ask why you want to do this? The purpose of LDAP is for global
> authentication.
Our organization uses Oracle for accounting/billing/etc. But I cannot
(don't want, strictly speaking) use Oracle for system authorization on
cisco/linux/etc. So, it's only for company staff, in order to have one
username per person :)
--
Sincerely, Peter V. Saveliev
E-mail: [EMAIL PROTECTED]
Jabber: [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
