12-10-2010 07:55 AM
We want to add another network that authenticates against the forest (y.edu) so that people from the other institutions in our system can login with their forest credentials.
So there are two accounts for each user, the local subdomain account (firstname.lastname@example.org) and a forest account (email@example.com).
My issue is that local users will be able to login to this new network with their forest account. I want to filter so they cannot. We have the location of the user in the "Office" attribute in AD and I want to deny access to users that have "XXX" in that field. Is this possible in RADIUS? (we are using server 2008 r2 radius)
12-11-2010 04:02 AM
12-13-2010 06:24 AM