hey Phil, hey list Phil Mayers wrote: > Michael Messner wrote: >> If I define the users on the Radius with the help of the users file it >> is no problem and it works perfectly, but how can I use the information >> from the AD? > > Use the "ldap" module to query AD and add attributes to the reply > dynamically. For example: > > DEFAULT Ldap-Group == "cn=students,dc=domain,dc=com" > Filter-Id = "Enterasys:version=1:mgmt=su:policy=userrole" > > ...or similar.
thanks for your help, now I have configured the Ldap connection to AD with the Ldap Groups and yea it works! :-) But as I understood I can't use PEAP or MD5 authentication, am I right? So there is nothing with 802.1x security?!? If so, are there any other possible solutions/workarounds? I hope somebody can give me any help, information, links or something else. thanks ca mIke - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html