Does someone know if freeradius can update an LDAP user attribute as part of
post processing?
Would it be via xlat or unlang?
tia
-John
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
On 08/02/12 15:56, John Doppke wrote:
Does someone know if freeradius can update an LDAP user attribute as part of
post processing?
As far as I'm aware, that's not currently possible via rlm_ldap.
You could use a wrapper script around ldapmodify, called via the
exec module.
-
List
On 2012/02/08 06:24 PM, Phil Mayers wrote:
On 08/02/12 15:56, John Doppke wrote:
Does someone know if freeradius can update an LDAP user attribute as part
of post processing?
As far as I'm aware, that's not currently possible via rlm_ldap.
You could use a wrapper script around ldapmodify,
Hi,
Do you know if is possible to reject a login with radgroupcheck?
In latest versions of FreeRADIUS, if we want to reject a user's request that
tries to do login with some attributes, we should to use radcheck because if
we use radgroupcheck FreeRADIUS doesn't produce a reject.
In radcheck
On Thu, Feb 9, 2012 at 12:51 AM, Fazal Ahmed Malik f...@solacetel.com wrote:
Hi,
I have implemented daily usage limit and also volume limit but users are
still able to connect.
Radius logs says,
Auth: Invalid user (rlm_counter: Maximum daily usage time reached):
[fam/fam] (from client
Thx alan, I found/read read the docs, but still trying to determine this: Which
config file contains this setting:
To actually force a client to change passwords, you must set the expiry bit in
the SMB-Account-Ctrl value - for example:
update control {
# U == user
# e == expired
On Thu, Feb 9, 2012 at 3:38 AM, Will Richmond w...@bootit.com wrote:
Thx alan, I found/read read the docs, but still trying to determine this:
Which config file contains this setting:
To actually force a client to change passwords, you must set the expiry bit
in the SMB-Account-Ctrl value -
I'm trying to find some sample accounting data from freeradius,
preferably in a mysql database to run some test analyses on. I'm
considdering using Freeradius + Mysql accounting in my environment, and
don't have the infrastructure to generate test data, and would like to
analyze some to see
thx all, i am stuck on this point now:
mschap {
passchange {
local_cpw = %{xlat:...}
}
Does there exist an xlat: that NT-hashs new cleartext password, deletes the
change pass xtrl attribute in users file and then writes the new pass there? or
am I going about this the
On Thu, Feb 9, 2012 at 7:49 AM, Will Richmond w...@bootit.com wrote:
thx all, i am stuck on this point now:
mschap {
passchange {
local_cpw = %{xlat:...}
}
Does there exist an xlat: that NT-hashs new cleartext password, deletes the
change pass xtrl attribute in users file
I'm using WPA2-EAP-TLS to verify certificates, and matching certificates
to accounts in LDAP to verify accounts are in good standing.
This morning around 7AM local time I blocked an offending user from the
wifi network by adding their account to the disabled-users group in the
ldap directory.
11 matches
Mail list logo
