Jason Chan wrote: > For example, Kerberos successfully authenticate admin/admin (yes I don't > use MySQL for authentication), and FreeRadius knows this user has > permission to access. Now, in the postauth part, FreeRadius searches the > radreply table in its MySQL database for the proper attributes that this > particular user has, say Service-Type = Administrative-User. I store > these attribute information in radreply table and leave other tables > empty. > > So, I edited the postauth_query in sql.conf:
I think for historical reasons, you have to perform the query in the authorize section. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
