On 14/07/11 13:09, Serge van Namen wrote:
Hi,
I'm working on a proof-of-concept for 802.1x and dynamic vlan's on switches.
All this works perfectly with user@realm, but now I want to read the vlan ID from a ldap
attribute and then send the radius request with that value in
"Tunnel-Private-Group-ID".
Can anyone give me a bump in the right direction?
Read this:
http://wiki.freeradius.org/Rlm_ldap
Pay particular attention to "reply items". You can also use "ldap xlat"
in the inner-tunnel post-auth section e.g.
post-auth {
update reply {
Tunnel-Private-Group-Id := "%{ldap:///url}";
}
}
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
