On Wed, 19 Nov 2003, Dan Didier wrote:
> Hi list, > > I was wondering what peoples experiences have been with using FreeRadius > with the cisco VPN 3000 concentrator. > > Are there any documents outlining this? > > Thanks, > Dan > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html > We use it with freeradius and ldap as a backend. We use the radiusclass attribute, which will lock the user into the group that we provision them to, regardless of the group they put in their vpn client. They will still need a valid group/password in the client to authenticate. An example reply item for the user [EMAIL PROTECTED] would be Radius-Class = "OU=mydomain.com;" Must have the OU capital and the ; at the end. Check out: http://www.cisco.com/en/US/tech/tk583/tk547/technologies_configuration_example09186a00800946a2.shtml for more info. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
