Re: Freeradius privilege separation

Michał Dopierała wrote: It is possible in freeradius to have one user who has full privilege level to one equipment (one cisco router privilege lvl15), and limited privilege level to other equipment (other router with smaller privilege e.g. lvl10 which will be configured on router)? Yes.

Re: Freeradius privilege separation

Thanks for response! So, users file can look like this: users= mdopierala Packet-Src-IP-Address == 192.168.1.1, Crypt-Password = some_hash Service-Type = Administrative-User,

Re: Freeradius privilege separation

Michał Dopierała wrote: Thanks for response! So, users file can look like this: Yes. users= mdopierala Packet-Src-IP-Address == 192.168.1.1, Crypt-Password = some_hash It's NOT a hash. It's a password. This way

Freeradius privilege separation

Hi! It is possible in freeradius to have one user who has full privilege level to one equipment (one cisco router privilege lvl15), and limited privilege level to other equipment (other router with smaller privilege e.g. lvl10 which will be configured on router)? How to separate it? My current

Re: Freeradius privilege separation

On Thu, May 13, 2010 at 03:23:37PM +0200, Michał Dopierała wrote: It is possible in freeradius to have one user who has full privilege level to one equipment (one cisco router privilege lvl15), and limited privilege level to other equipment (other router with smaller privilege e.g. lvl10 which