My users authenticate via certificates and eap/tls.
Up to now they all get the same DEFAULTs for DNS servers and WINS
Now there is demand, to assign some of them special servers.
I would like to do this, defining another DEFAULT entry combined with a
hint/check item or something else.
If they would use normal accounts, they would be able to append a suffix
to that account, so that a hint file comes into business.
As their login is extracted from the certificate, they have no chance to
I would like to do something like this, but as far as I understand, this
Group check-item will only work with Auth-Type=System: