This is basically the same thing that I'm doing, and have described in
detail in a previous message to the list.
The search filter would be something like this. Don't quote me, as there may
be differences in the syntax used for seaching your LDAP directory. Check
the previous messages for the link to the RFC.
SearchFilter (&(uid=%{User-Name})(accountstatus=1))
-----Original Message-----
From: Robin Gruyters [mailto:[EMAIL PROTECTED]]
Sent: Friday, August 11, 2000 6:16 AM
To: Felicetti, Stephen A.
Cc: [EMAIL PROTECTED]
Subject: Re: (RADIATOR) Check Attribute in LDAP
Ok, what I want todo is check a attribute that is in the LDAP server
(accountstatus). If a user tries to dail-in then the radius server has to
check
his username, password and if the accountstatus = 1. If the attributed
doesn't
exists or is '0' this the user must be Rejected.
On Thu, Aug 10, 2000 at 09:07:05AM -0400, Felicetti, Stephen A. wrote:
> Robin,
>
> I'm sorry, but I really don't understand what you are trying to do.
> I laid out a couple scenerios that use additional LDAP attributes
(besides
> username/password) during the authentication process. If these choices are
> not right for your environment, then I guess I misunderstood your problem.
> If you can provide more detail, step by step, on what you want to happen,
> I'm sure there's a solution out there for you.
>
> -Steve
>
> -----Original Message-----
> From: Robin Gruyters [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, August 10, 2000 5:37 AM
> To: Felicetti, Stephen A.
> Cc: [EMAIL PROTECTED]
> Subject: Re: (RADIATOR) Check Attribute in LDAP
>
>
> Ok,
>
> what i want to do is aan Auth. on the LDAP on a different Attribute. Maybe
> this
> is possible with a PreAuthHook, but I don't know realy how todo this.
>
> Or isit possible to add a attribute to the Request?
> --
> Regards,
>
> Robin Gruyters - [EMAIL PROTECTED] - WISH BV - nic-hdl: RG3771-RIPE
> http://www.wish.net - tel: +31(0)413242500 - fax. +31(0)208762628
> PGP key ID DEB8C991 - Head Engineering / Web Designer / B.O.F.H.
> BOFH excuse: Zombie processes haunting the computer
>
> ===
> Archive at http://www.starport.net/~radiator/
> Announcements on [EMAIL PROTECTED]
> To unsubscribe, email '[EMAIL PROTECTED]' with
> 'unsubscribe radiator' in the body of the message.
--
Regards,
Robin Gruyters - [EMAIL PROTECTED] - WISH BV - nic-hdl: RG3771-RIPE
http://www.wish.net - tel: +31(0)413242500 - fax. +31(0)208762628
PGP key ID DEB8C991 - Head Engineering / Web Designer / B.O.F.H.
BOFH excuse: Typo in the code
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
===
Archive at http://www.starport.net/~radiator/
Announcements on [EMAIL PROTECTED]
To unsubscribe, email '[EMAIL PROTECTED]' with
'unsubscribe radiator' in the body of the message.
