PD wrote: > For the above purpose, we put attribute Called-Station-Id for each demo > account within radcheck table. > > The problem found, the account demo1 still be able to use at nas2 vice > versa.
Please read doc/rlm_sql. > Here is our radcheck table: > mysql> select * from radcheck where username='demo'; > +----+-----------+-------------------+----+-------------------+ > | id | UserName | Attribute | op | Value | > +----+-----------+-------------------+----+-------------------+ > | 40 | demo | Auth-Type | := | Local | Don't use Auth-Type. i.e. DELETE that row. > | 41 | demo | Password | == | password | Change these fields to "Cleartext-Password := password" > | 42 | demo | Called-Station-Id | := | 00-1A-70-XX-XX-XX | Read doc/rlm_sql. This operator *sets* the value. It doesn't *compare* the value. You want "==" > Perhaps, we miss something at somewhere... The operators are documented in doc/rlm_sql. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
