[Date Prev][Date Next] [Chronological] [Thread] [Top]

Conditionals in LDAP

To: openldap-technical@openldap.org
Subject: Conditionals in LDAP
From: Tom Cooper <tcooper@fnb.co.za>
Date: Thu, 02 Oct 2008 07:53:23 +0200
User-agent: Thunderbird 2.0.0.17 (X11/20080925)

Hi all,
I am fairly new to OpenLDAP and I was requested to set up the following:

We have ADSL users to authenticate on freeradius which reads the user info via an OpenLDAP server. Now when the user has used a certain amount of data he must be flagged as blocked. His connection is disconnected and upon reconnection he is assigned a different IP address with restricted connectivity untile he tops up his account. I can see that his information needs to be changed in LDAP to maybe assign him to a different uid, something like this:

uid=xxxxxx,dc=radius,dc=example,dc=com (Original)
changed to
uid=xxxxxx,dc=blocked,dc=radius,dc=example,dc=com.

My question is now how do I accomplish this, because on the client side he will still try to authenticate as uid=xxxxxx,dc=radius,dc=example,dc=com and I can not control what credentials are sent?

Is it maybe better accomplished from freeradius than from LDAP? The record needs to be changed in LDAP for our admin portal to make use of this to check the client's status.

Regards,

To read FirstRand Bank's Disclaimer for this email click on the following address or copy into your Internet browser: https://www.fnb.co.za/disclaimer.html

If you are unable to access the Disclaimer, send a blank e-mail to
firstrandbankdisclaimer@fnb.co.za and we will send you a copy of the Disclaimer.

Follow-Ups:
- Re: Conditionals in LDAP
  - From: Buchan Milne <bgmilne@staff.telkomsa.net>

Prev by Date: samba: Active Directory support requires ldap_initialize
Next by Date: OpenLDAP 2.4.10 Import Errors
Index(es):
- Chronological
- Thread