On Jun 10, 2013, at 3:58 PM, Alan DeKok <[email protected]> wrote:
> >> I can't find any way to restrict the actual realm definitions to a virtual >> server. They are all global configuration loaded via proxy.conf. > > They are global. That's what I suspected. Thanks for confirming. In my case I have two virtual servers, one which handles a local staff SSID and one which handles our eduroam SSID. Defining a NULL domain for the local SSID virtual server has the unfortunate effect of allowing a NULL domain for eduroam virtual server as well. I was able to achieve most of what I wanted by adding more checks in the virtual server authorize section of the eduroam server to double check for a NULL domain and force a reject. > >> Is there some method I'm missing for making the realm definitions >> per-server? Thanks in advance, > > Source code modifications. Always an option, but not necessarily the easiest. Thanks for the help, -David Mitchell > > Alan DeKok. > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html ----------------------------------------------------------------- | David Mitchell ([email protected]) Network Engineer IV | | Tel: (303) 497-1845 National Center for | | FAX: (303) 497-1818 Atmospheric Research | ----------------------------------------------------------------- - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
