Identifing VirtuaHub at Radius server side
Posted: Thu Apr 17, 2014 1:12 pm
I've successfully set up SoftEther Vpn server with 3 different virtual hubs. Each hub bridges connected users into different networks. Now i want to implement radius auth for incoming connections. Right now i can authentificate all users via radius on any hub.
My radius server integrated with AD server and uses it as users database (integrating SoftEther with AD is not an option). Level of privilege for a user determined based on NAS-Identifier and AD groups of a user.
What i want to achieve is:
Some users can connect to all hubs.
Some users can connect only to some of hubs.
Some users can connect only to a certain hub.
The problem is - i can't find any way on a radius server to identificate which hub is user connecting to. I can either allow connection to all hubs or restrict it completely.
So the question is - is there any way to identifie which hud is user connecting to at radius server side? The perfect way would be to change NAS-Identifer depending on hub, but it seems impossible to me right now.
My radius server integrated with AD server and uses it as users database (integrating SoftEther with AD is not an option). Level of privilege for a user determined based on NAS-Identifier and AD groups of a user.
What i want to achieve is:
Some users can connect to all hubs.
Some users can connect only to some of hubs.
Some users can connect only to a certain hub.
The problem is - i can't find any way on a radius server to identificate which hub is user connecting to. I can either allow connection to all hubs or restrict it completely.
So the question is - is there any way to identifie which hud is user connecting to at radius server side? The perfect way would be to change NAS-Identifer depending on hub, but it seems impossible to me right now.