2 # Mapping of RADIUS dictionary attributes to LDAP directory attributes
3 # to be used by LDAP authentication and authorization module (rlm_ldap)
6 # ItemType RADIUS-Attribute-Name ldapAttributeName [operator]
9 # ItemType = checkItem or replyItem
10 # RADIUS-Attribute-Name = attribute name in RADIUS dictionary
11 # ldapAttributeName = attribute name in LDAP schema
12 # operator = optional, and may not be present.
13 # If not present, defaults to "==" for checkItems,
14 # and "=" for replyItems.
15 # If present, the operator here should be one
16 # of the same operators as defined in the "users"3
17 # file ("man users", or "man 5 users").
18 # If an operator is present in the value of the
19 # LDAP entry (i.e. ":=foo"), then it over-rides
20 # both the default, and any operator given here.
22 # If $GENERIC$ is specified as RADIUS-Attribute-Name, the line specifies
23 # a LDAP attribute which can be used to store any RADIUS
24 # attribute/value-pair in LDAP directory.
26 # You should edit this file to suit it to your needs.
29 checkItem $GENERIC$ radiusCheckItem
30 replyItem $GENERIC$ radiusReplyItem
32 checkItem Auth-Type radiusAuthType
33 checkItem Simultaneous-Use radiusSimultaneousUse
34 checkItem Called-Station-Id radiusCalledStationId
35 checkItem Calling-Station-Id radiusCallingStationId
36 checkItem LM-Password lmPassword
37 checkItem NT-Password ntPassword
38 checkItem LM-Password sambaLmPassword
39 checkItem NT-Password sambaNtPassword
40 checkItem SMB-Account-CTRL-TEXT acctFlags
41 checkItem Expiration radiusExpiration
42 checkItem NAS-IP-Address radiusNASIpAddress
44 replyItem Service-Type radiusServiceType
45 replyItem Framed-Protocol radiusFramedProtocol
46 replyItem Framed-IP-Address radiusFramedIPAddress
47 replyItem Framed-IP-Netmask radiusFramedIPNetmask
48 replyItem Framed-Route radiusFramedRoute
49 replyItem Framed-Routing radiusFramedRouting
50 replyItem Filter-Id radiusFilterId
51 replyItem Framed-MTU radiusFramedMTU
52 replyItem Framed-Compression radiusFramedCompression
53 replyItem Login-IP-Host radiusLoginIPHost
54 replyItem Login-Service radiusLoginService
55 replyItem Login-TCP-Port radiusLoginTCPPort
56 replyItem Callback-Number radiusCallbackNumber
57 replyItem Callback-Id radiusCallbackId
58 replyItem Framed-IPX-Network radiusFramedIPXNetwork
59 replyItem Class radiusClass
60 replyItem Session-Timeout radiusSessionTimeout
61 replyItem Idle-Timeout radiusIdleTimeout
62 replyItem Termination-Action radiusTerminationAction
63 replyItem Login-LAT-Service radiusLoginLATService
64 replyItem Login-LAT-Node radiusLoginLATNode
65 replyItem Login-LAT-Group radiusLoginLATGroup
66 replyItem Framed-AppleTalk-Link radiusFramedAppleTalkLink
67 replyItem Framed-AppleTalk-Network radiusFramedAppleTalkNetwork
68 replyItem Framed-AppleTalk-Zone radiusFramedAppleTalkZone
69 replyItem Port-Limit radiusPortLimit
70 replyItem Login-LAT-Port radiusLoginLATPort
71 replyItem Reply-Message radiusReplyMessage