John Duino <[EMAIL PROTECTED]> wrote: > Users authenticate fine, but I am not getting any group information back > to the Aventail. tcpdump confirms no info being passed. The group info > is primarily in NIS, but I have even tried putting some in the local > /etc/group for testing without success.
There are no standard RADIUS attributes to send group information in a RADIUS packet. As of recently in the CVS snapshots, there is a "dictionary.unix" file, with Unix group related attributes. However... if the NAS documentation doesn't say it understands those attributes, then it won't use them. > I'm using Unix authentication (system uses NIS) and I'm attempting > to access this from an Aventail EX1500. Uh, no. The Aventail is authenticating via RADIUS. FreeRADIUS can be configured to do authentication against /etc/passwd, but the Aventail NAS doesn't know that this is happening. > I do not totally (obviously) grasp the intricacies of the radiusd.conf > file, multiple authentication schemes, etc. It has nothing to do with "radiusd.conf". Why are you trying to send Unix group information to the NAS? Alan Dekok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
