[EMAIL PROTECTED] wrote: > I'm trying to understand the semantics of the += users file operator.
It's not so much about '+=', as "the users file doesn't allow you to do what you want to do" > lerxst Crypt-Password == "KSi8a3j4oasdi", ES-Default-ID += V90LocalUser ... > DEFAULT ES-Default-ID == V90LocalUser That won't work. As the 'man' page says, '+=' adds *configuration* items, and '==' checks for items in the request. > When I test with a users file like this, FreeRADIUS returns the reply > items from the user-specific entry, but it does not trigger the > DEFAULT entry. If I add ES-Default-ID = V90LocalUser to the original > request, the DEFAULT entry triggers. Exactly. > Am I using the += operator incorrectly? The users(5) man page states > that the += operator "... adds the current attribute with value to the > list of configuration items." Other documents -- notably aaa.txt -- > reference the fact that radiusd builds separate lists for check items > and configure items. Is += adding the ES-Default-ID attribute to a > list which the DEFAULT entry cannot check? Yes. > If += cannot be used this way, can anyone recommend a way of > accomplishing the same behavior? I have users with many different > classes of service and I want to create a DEFAULT entry for each class > which the user-specific entry references when authenticating. Use the 'hints' file. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
