Does anyone know if there is a way in the users file to set the
Tunnel-Private-Group-id = "some_default_vlan" if the following sql
statement comes back blank.
DEFAULT Auth-Type = "ntlm_auth"
Tunnel-Type = "VLAN",
Tunnel-Medium-Type = "IEEE-802",
Tunnel-Private-Group-id = "%{sql:SELECT
radius.vlans.assigned_vl
an FROM radius.vlans WHERE radius.vlans.device_mac =
'%{Calling-Station-Id}'}"
Joseph R. McSparin
Network Administrator
Hill Country Memorial Hospital
830 990 6638 phone
830 990 6623 fax
[email protected]
-----Original Message-----
From:
freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists.freerad
ius.org
[mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists
.freeradius.org] On Behalf Of McSparin, Joe
Sent: Thursday, January 05, 2012 10:54 AM
To: FreeRadius users mailing list
Subject: RE: SQL Statement in users file
With renewed confidence that this would work I found that I just needed
to add the database name and remove the single quotes and it worked. I
am curious about your suggestion to use "unlang" and post-auth can you
elaborate on that.
Joseph R. McSparin
Network Administrator
Hill Country Memorial Hospital
830 990 6638 phone
830 990 6623 fax
[email protected]
-----Original Message-----
From:
freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists.freerad
ius.org
[mailto:freeradius-users-bounces+jmcsparin=hillcountrymemorial.org@lists
.freeradius.org] On Behalf Of Phil Mayers
Sent: Thursday, January 05, 2012 10:29 AM
To: [email protected]
Subject: Re: SQL Statement in users file
On 05/01/12 15:24, McSparin, Joe wrote:
> Does this seem like a doable scenario in the users file it doesn't
> return anything but I'm not sure if it is query issue or if those
values
> are not available in the users file.
>
> DEFAULT Auth-Type = "ntlm_auth"
> Tunnel-Type = "VLAN",
> Tunnel-Medium-Type = "IEEE-802",
> Tunnel-Private-Group-id = "%{sql:SELECT 'vlans.assigned_vlan' FROM
> 'vlans' WHERE 'vlans.device_mac' = '%{Calling-Station-Id}'}"
That should work.
What does the "debug" say?
It is often preferable to use "unlang" to "users" files entries in the
current server versions; there's a bit more flexibility, in particular
you can run the SQL query once in post-auth, and in debug mode you get a
better idea of what actually matches. e.g.
post-auth {
update reply {
Tunnel-Type = "VLAN",
Tunnel-Medium-Type = "IEEE-802",
Tunnel-Private-Group-id = "%{sql:SELECT ...}"
}
}
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
--
This email message and any attachments are for the sole use of the
intended recipient(s) and contain confidential and/or privileged
information. Any unauthorized review, use, disclosure or distribution is
prohibited. If you are not the intended recipient, please contact the
sender by reply email and destroy all copies of the original message and
any attachments.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
--
This email message and any attachments are for the sole use of the intended
recipient(s) and contain confidential and/or privileged information. Any
unauthorized review, use, disclosure or distribution is prohibited. If you are
not the intended recipient, please contact the sender by reply email and
destroy all copies of the original message and any attachments.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
