Do something like:
modules {
passwd mac2ok {
filename = /etc/raddb/mac2ok
format = *Calling-Station-Id:~My-Local-String
hashsize = 100
}
# other modules
}
authorize {
preprocess
mac2ok
files
# other modules
}
Ranner, Frank MR wrote:
DEFAULT My-Local-String == ok, Auth-Type := ACCEPT
Reply-Message = %u logged on,
Other-Attribute = somevalue
Don't do that. Auth-Type := ACCEPT will break EAP, MS-CHAP, and any
other challenge-response or multi-round-trip exchange.
Set
-Original Message-
From:
[EMAIL PROTECTED]
eradius.org [mailto:freeradius-users-
[EMAIL PROTECTED] On
Behalf Of Norbert Grochal
Sent: Saturday, 25 November 2006 00:13
To: FreeRadius users mailing list
Subject: Re: very long regular expression...
Do something like:
modules
Norbert Grochal wrote:
OK, It almost works fine, but if there is no mac in my mac2ok file then
users file doesn't put REJECT into Auth-Type.
I have added that line at the begining of users file:
DEFAULT Auth-Type := REJECT, My-Local-String !* a
and if there is no mac in mac2ok file then user
Do something like:
modules {
passwd mac2ok {
filename = /etc/raddb/mac2ok
format = *Calling-Station-Id:~My-Local-String
hashsize = 100
}
# other modules
}
authorize {
preprocess
mac2ok
files
# other modules
}
Make /etc/raddb/mac2ok read:
Norbert Grochal wrote:
I want to disallow login to access points for every hosts that are not
in my network.
So at the end of /usr/local/etc/raddb/users file I put regular
expression that checks if Calling-Station-Id IS NOT in list of my
hosts...
DEFAULT Auth-Type := REJECT,
I have FreeRADIUS Version 1.1.0
I want to disallow login to access points for every hosts that are not in my
network.
So at the end of /usr/local/etc/raddb/users file I put regular expression that
checks if Calling-Station-Id IS NOT in list of my hosts...
DEFAULT Auth-Type := REJECT,
Norbert Grochal wrote:
I have FreeRADIUS Version 1.1.0
I want to disallow login to access points for every hosts that are not
in my network.
So at the end of /usr/local/etc/raddb/users file I put regular
expression that checks if Calling-Station-Id IS NOT in list of my hosts...
DEFAULT
I have FreeRADIUS Version 1.1.0
I want to disallow login to access points for every hosts that are not
in my network.
So at the end of /usr/local/etc/raddb/users file I put regular
expression that checks if Calling-Station-Id IS NOT in list of my
hosts...
DEFAULT Auth-Type :=
9 matches
Mail list logo
