(RADIATOR) OpenLDAP Vlan attribute & Radiator

Hugh Irvine hugh at open.com.au
Wed May 26 17:26:47 CDT 2004 

Hello Freerk -

You should use a combination of AuthAttrDef for the 
Tunnel-Private-Group-ID and AddToReply for the rest.

	<AuthBy LDAP2>
		.....
		AuthAttrDef VlanID, Tunnel-Private-Group-ID, reply
		AddToReply Tunnel-Type = VLAN, \
			Tunnel-Medium-Type = Ether_802, \
			Session-Timeout = 1200
	</AuthBy>

See section 6.35.16 in the Radiator 3.9 reference manual for details 
("doc/ref.html").

regards

Hugh


On 26 May 2004, at 21:59, Freerk Bosscha wrote:

>
> Thanks for reading,
>
> Currently we think about using dot1x on all wired points as well as
> wireless.
>
> Until know we had only fixed vlan based on the SSID.
> What I would like to do is than in our openldap I have an entry for
> each user call VlanID.
> How can I configure radiator to use that entry.
>
> I have tried it in a local users file, and that is working fine now.
> But there I have put the whole syntax in:
>
> freerk1 User-Password=xxxx
>         Tunnel-Type = VLAN,
>         Tunnel-Medium-Type = Ether_802,
>         Tunnel-Private-Group-ID = "303",
>         Session-Timeout = "1200"
>
> Only the Tunnel-Private-Group-ID is variable.
>
> Thanks for any suggestions,
>
> -- 
> Freerk J. Bosscha
>
> Networkadministrator
> Noordelijke Hogeschool Leeuwarden
> Tesselschadestraat 12
> 8913 HB  Leeuwarden
> The Netherlands
>
> Phone : xx-31-(0)58 2961 875
> fax   : xx-31-(0)58 2961 874
> Mobile: xx-31-(0)6 231 28 068
> e-mail: f.j.bosscha at nhl.nl
> url   : http://www.fac.nhl.nl/~bosscha
>
> --
> Archive at http://www.open.com.au/archives/radiator/
> Announcements on radiator-announce at open.com.au
> To unsubscribe, email 'majordomo at open.com.au' with
> 'unsubscribe radiator' in the body of the message.
>
>

NB: have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.

--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list