AuthFILE's findUser only supports searching by the username, the check
items are
processed later when deciding to grant authorization or not -- if you
want to send
different reply items based on a check item, you can either do that by
specifying
it in a Handler or AuthBy clause in conjunction with AddToReply or
AddtoReplyIfNotExist.
Alternatively, you could probably do this in a PostAuthHook.
Robert Fisher
Systems Administrator
Sitestar Internet Services
On 1/16/2018 4:10 PM, Johnson, Neil M wrote:
I’m guessing this has been answered, but my Google skills are failing me today.
I need to return different RADIUS attributes to devices based on the client
identifier.
I tried making the entries in the users file like this:
#
# rasauser is used by netinisight to log into controllers and Airwave as a read
only user
#
# AMP Servers
lu_rasauser User-Password = “secret”, Client-Identifier = AMP_Clients
Session-Timeout=0,Aruba-Admin-Role="Admin"
# WLAN Controllers:
lu_rasauser User-Password = “secret”, Client-Identifier =
Aruba_WLAN_CTRL_Clients
Session-Timeout=0,Aruba-Admin-Role="read-only"
But it appears that it always only matches the first entry in the file.
Is there as way to to do this?
Thanks.
-Neil
_______________________________________________
radiator mailing list
[email protected]
http://lists.open.com.au/mailman/listinfo/radiator
_______________________________________________
radiator mailing list
[email protected]
http://lists.open.com.au/mailman/listinfo/radiator
