Chapter 7. Authorization
Authorization is a process where information in a request is evaluated. This information may be used to validate against information about the user that was obtained from file, database, or LDAP directory. Authorization happens before authentication and does not involve the checking of a password. We can use various logic and comparisons to determine if a user is authorized to connect to a network. We can also determine things like how long they can use a network or the quality of service to offer them. These are all components of authorization and discussed in this chapter.
In this chapter we shall:
- See how restrictions are applied to users
- See how FreeRADIUS performs authorization
- Explore the
unlangprocessing language in FreeRADIUS - Use
unlangto create a data reset counter
So, let's get on with it...
