On 09/17/2013 03:48 PM, Alexander Hartmaier wrote:
my $memberof = $entry-get_value('memberOf', asref = 1);
foreach my $group (@$memberof) {
return 1 if (map {lc $group eq lc $_} @ldap_groups);
}
return 0;
5.38.21 PostSearchHook from the 4.12 reference doc doesn't describe how
the
On 09/18/2013 01:14 PM, Heikki Vatiainen wrote:
Thanks, noted. Also noted Garry's message. Something like
%{RequestOr:attributename} should be quite straight forward to do and
understand. However, %{RequestAnd:attributename} requires a bit more.
Synatax like this might be a possibility:
Heikki,
I was under the impression that RquestOr is already supported if one lists
values separated by a space. Are you proposing to change the separator
character to pipe and offering explicit method?
Thanks.
Sent with Good (www.good.com)
-Original Message-
From: Heikki Vatiainen
On 2013-09-18 12:30, Heikki Vatiainen wrote:
On 09/18/2013 01:14 PM, Heikki Vatiainen wrote:
Thanks, noted. Also noted Garry's message. Something like
%{RequestOr:attributename} should be quite straight forward to do and
understand. However, %{RequestAnd:attributename} requires a bit more.
On 09/18/2013 02:51 PM, Garry Shtern wrote:
I was under the impression that RquestOr is already supported if one
lists values separated by a space. Are you proposing to change the
separator character to pipe and offering explicit method?
I was thinking the case below. Here the request has two
Hello,
I'm trying to use AuthBy DYNADDRESS combined with AddressAllocator
DHCP in order to allocate IPv4 addresses from an DHCP server.
IP allocation during authentication is working fine but there is no any
de-allocation happening with the STOP accounting packet. Is this the
expected
Ah, I was a bit confused. That makes sense now.
This begs a necessity for a method that retrieves all groups a user belongs to
into a multi-value attribute that is checked against with
%{RequestOr:attribute}=Group1|Group2. At least for LDAP.
Thanks.
-Original Message-
From:
On 2013-09-18 16:53, Garry Shtern wrote:
Ah, I was a bit confused. That makes sense now.
This begs a necessity for a method that retrieves all groups a user belongs
to into a multi-value attribute that is checked against with
%{RequestOr:attribute}=Group1|Group2. At least for LDAP.
That's
Hi,
On Wed, 18 Sep 2013, Garry Shtern wrote:
That's not good enough. MemberOf doesn't contain nested groups. In order to
retrieve all the groups a user belongs to, one has to run additional query
against AD:
I do the same thing. I was simply pointing out that if the multi-value
matching is going to be available, it would help to introduce another method
for group searching into AuthLDAP2 rather than having to rely on
PostSearcHooks...
-Original Message-
From: radiator-boun...@open.com.au
That's not good enough. MemberOf doesn't contain nested groups. In order to
retrieve all the groups a user belongs to, one has to run additional query
against AD:
((objectClass=group)(sAMAccountType=268435456)(member:1.2.840.113556.1.4.1941:=%{user-dn})).
-Original Message-
From:
patch set. :)
Thanks,
David
diff -ur radiator-20130918/radiator/lib/perl5/Radius/AuthRADIUS.pm
radiator-dmrz/radiator/lib/perl5/Radius/AuthRADIUS.pm
--- radiator-20130918/radiator/lib/perl5/Radius/AuthRADIUS.pm 2013-09-06
07:58:34.0 -0500
+++ radiator-dmrz/radiator/lib/perl5/Radius
Hello Vangelis -
An accounting stop should release the address.
I will need to see a copy of your configuration file together with a trace 4
debug showing an accounting start and an accounting stop.
regards
Hugh
On 18 Sep 2013, at 23:44, Vangelis Kyriakakis vkyr...@forthnetgroup.gr wrote:
13 matches
Mail list logo