The file doc/Autz-Type explains how Autz-Type can be used to define
authorization module. It says that the default authorization module
can be defined in the file 'users' and the appropriate modules should
be defined within the authorize section.
I follow it word by word but it does not work at all.
I am using release 0.8.1.
/usr/local/etc/raddb/users has the following entry:
DEFAULT Called-Station-Id == "123456789", Autz-Type := LDAP
/usr/local/etc/raddb/radiusd.conf has
authorize {
files
autztype LDAP {
ldap
}
autztype SQL {
sql
}
}
When I ran the server with -X flag, I got the following error
/usr/local/etc/raddb/users[61]: Parse error (check) for entry DEFAULT:
Unknown value LDAP for attribute Autz-Type
Errors reading /usr/local/etc/raddb/users
radiusd.conf[761]: files: Module instantiation failed.
It does not matter whether I use 'Ldap' or 'SQL', it all fails.
My feeling is that Autz-Type is obsolete, at least in current
implementation. Is that correct?
If so, the Autz-Type document should be removed from the documentation to
avoid misleading people.
If not, I cannot see where I am doing wrong.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
