> > > Hello, > > I would like to know if this is possible > > Send a Class or Filter-Id attribute to the NAS, with the content > > being the names of the LDAP groups to which the user belongs. > > > > Thank you, > > denis > > > > How does the NAS expect the group to come back? > > Class:
Sorry, I guess I hit send too early. What I meant was what radius attribute the nas expecting for the groups? An example could be the radius attribute Class. In that case, you would make sure the following is in ldap.attrmap replyItem Class radiusClass Then in your ldap directory, you would store the reply items. radiusClass: "OU=group.com;" The one above is an example for Cisco VPN concentrators. Need to add more use +=, read the man page on users. -Dusty Doris - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
