On Fri, 31 Dec 2004, Rohaizam Abu Bakar wrote:
Hi,
OS: FreeBSD 4.9p4 Radius: Freeradius 1.0.1
I know how to block ALL ISDN.. using NAS-Port-Type attribute..
users file ====== DEFAULT NAS-Port-Type == "ISDN", Auth-Type := Reject Reply-Message = "Your account has been disabled."
DEFAULT Auth-Type := LDAP
Tested seems working...
But I would like to block ISDN that has certain flag stored in LDAP.. let say I stored flag "unlimited = 1" in user's profile in LDAP... So only ISDN with this flag stored is block... All others ISDN will be through... Is it possible??? please help..
Map the unlimited attribute to a radius check attribute (like Hint, or create one of your own). Then in the users file (placed after ldap in the authorize section):
DEFAULT NAS-Port-Type == ISDN, Hint == 1, Auth-Type := Reject
--haizam
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
