Dear all,
I am trying to create a scenario where users are blocked depending on their memberOf attribute on an LDAP.
Initially all users are enabled on a generic LDAP group let's call it "allow_all".
An administrator will be able to move users to another group called "blocked".
Is it possible to have the XCC Control monitor this memberOf change every X seconds/minutes and if matched issue a CoA through the RADIUS interface to the AP for disconnecting the user or moving him to a different VLAN with no internet access?
Thank you
