Good day to all ye gentlepersons,
For some time now I have -- fairly successfully -- been using
FreeRADIUS on the ADSL router my employers own. So successfully, in
fact, that they've asked me to look into replacing their current /other/
RADIUS server (an unspecified piece of excretia running on windows NT)
with a linux machine running FreeRADIUS instead. I have done so, and am
now left with only a single problem that I can't seem to find the answer
for:
The company I work for has two separate dial-in services: one at
the office, the other on location elsewhere. They have different
userbases, and users from one group are not allowed to dial into the
other router. Right now this is done by running two separate RADIUS
servers on two separate machines, which is not exactly optimal.
My question, then is: Is there a reply field (I'm using mySQL as backend,
so I'd like to add it in radgroupreply) that restricts a username to one
client (from the ones listed in clients.conf) and that one client only?
And if so, what documentation have I overlooked?
Thanks in advance,
--
Rens Houben | opinions are mine
Resident linux guru and sysadmin | if my employers have one
Systemec Internet Services. |they'll tell you themselves
PGP public key at http://swordbreaker.systemec.nl/shadur.key.asc
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
