Re: Restriction by Group

mwilson@flash.net
Thu, 25 Apr 1996 09:26:44 +0000

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: MegaZone: "Users Cannot login when Inet Connection goes down (fwd)"
Previous message: William Bulley: "Re: Restriction by Group"
Maybe in reply to: igoldste@mum.neric.org: "Restriction by Group"

> According to igoldste@mum.neric.org:
> >
> > Is there any way with either the Livingston or Merit Radius to
> > restrict access by group id? We'd like the radius server to
> > authenticate using it's unix password file, but there is a group
> > of users that we do not want to have dial-in access via the
> > portmasters. I know that I could explicitly enter each user into
> > the users file, but the group is large and already identified with
> > a unique GID.
>
> The next release of the Merit LAS code (that's the shareware stuff
> with the license for commercial use) will have this feature in it.

Should be simple to write it to do just that already. I did just this
to the Ascend Radius to restrict to just an ISDN group ID. Just add a
gid check after the user gets a valid authentication for
pwd->pw_gid==whatever.

I can get more specific if ya need it.

----------------------------------------------------
Mike Wilson, mwilson@flash.net http://www.flash.net/~mwilson
CTO, Head of System Administration (817)332-8883

Next message: MegaZone: "Users Cannot login when Inet Connection goes down (fwd)"
Previous message: William Bulley: "Re: Restriction by Group"
Maybe in reply to: igoldste@mum.neric.org: "Restriction by Group"