I have Mikrotik which works like PPTP server and Freeradius for authentication and authorization.
How to assign PPTP user's IP or name in Freeradius (user1 = 10.11.1.145 in my case) with Mikrotik's firewall group?
I need all this stuff because Firewall groups helps to deal with rules better.
I've tried to add this record to the radreply table
INSERT INTO radius.radreply (username, attribute, op, value) VALUES ('user1', 'Mikrotik-Address-List', ':=', 'remote_managers');
but without results.
After user1 was connected to Mikrotik there is a record in Log that MT-Address-List="remote_managers" but it doesn't appear in Firewall>Address List.
Best Answer
Did you refer 'Mikrotik's firewall group' to 'Mikrotik User Group' ?
If so, find the way to make freeradius give 'reply:Mikrotik-Group' in response.
Please read https://wiki.mikrotik.com/wiki/Manual:RADIUS_Client#Access-Accept
I'm also playing with FreeRadius and Mikrotik, but I take the 'rest' path rather then 'unlang'. Nothing wrong with unlang (it's the default), just make sure you realy know how to read-set some attributes with it.