>We have openldap which includes our machine accounts. We >have also computer certificates. Now what i want to do that freeradius, >checks authorization against ldap and authenticate against certificates. > >I have tested to put ldap to authorization section and eap to authentication >section, but this wont work. I have also tested to put both ldap and eap to >authorization section, but ldap wont return reject if user's noot found. > >Is there any method to return reject for authorization section if user not >found in ldap and stop processing there? Or is there any other method to do >this? >
Read doc/rlm_ldap about access_attr. Ivan Kalik Kalik Informatika ISP - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
