Hello list, I'd like to set the Filter-Id in the response based on an LDAP group.
authorize {
....
if ( Ldap-Group =~ /CN=group1,ou=groups,dc=company,dc=com/ ) {
update control {
Tmp-String-1 := "group1"
}
....
}
post-auth {
....
update reply {
Filter-Id := "%{control:Tmp-String-1}"
}
}
This works like a charme!
As I got a lot of groups, I'd like to do some pattern matching...
if ( Ldap-Group =~ /CN=(xyz),ou=groups,dc=company,dc=com/ ) {
update control {
Tmp-String-1 := "%{1}"
}
... but it seems that the ldap_groupcmp does not support pattern matching?
Am I right or does anybody has another idea?
Thanks a lot and kind regards
Cornelius
signature.asc
Description: OpenPGP digital signature
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
