Whitlow, Michael wrote:
> I just got Freeradius running on Ubuntu and have successfully configured
> integration Active Directory using Samba and NTLM_AUTH.
That's good to hear.
> When I run “radtest” against Freeradius and put in AD credentials, it is
> successful.
Good...
> In other words, users who are a member of ADGROUP1 get assigned vlan #
> 111, and users who are a member of ADGROUP2 get assigned vlan #222.
Configure Active Directory as an LDAP server. See raddb/modules/ldap.
List "ldap" in radius.conf, "instantiate" section
Then in the "users" file, do:
DEFAULT LDAP-Group == "adgroup1"
... set VLAN 1...
DEFAULT LDAP-Group == "adgroup2"
... set VLAN 2 ...
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
