On 22/03/11 14:24, Robert Roll wrote:
Below is what I have in my authorization section. I
update control {
ldapADut-Ldap-Group :=
"cn=chemVLAN,OU=Groups,OU=UofURadius,dc=ad,dc=utah,dc=edu"
}
ldapADut {
notfound = reject
}
Where did you get this from? It's totally wrong.
Try:
if (Ldap-Group == chemVLAN) {
}
Ldap-Group (or modname-Ldap-Group) is a "virtual" attribute, that will
perform the group membership check when you run a comparison.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
