Alan, Thanks! That worked.
Now, I am having a similar problem with radlast. If a user logs in using the domain suffix it strips the suffix for authentication and for the radutmp file but not for radlast. If I use radllast username I get no results. If I do username+suffix their report is displayed. Is there a configuration option for the radwtmp file to strip the suffix? Doug -----Original Message----- From: Alan DeKok [mailto:[EMAIL PROTECTED]] Sent: Friday, January 03, 2003 3:18 PM To: [EMAIL PROTECTED] Subject: Re: freeradius ramutmp/radwho suffix simultaneous use issues... "Doug Friend" <[EMAIL PROTECTED]> wrote: > Issues: > * If a user is logged in with their login name (no suffix) and attempts > to login with their login+suffix at the same time, they are > authenticated. This provides them the ability to have 2 simultaneous > connections. Do I have something set wrong in the configuration or is > this by design? It's certainly not by design. There's an undocumented configuration option for the radutmp module. Add this in the 'radutmp' section: radutmp { ... username = %{Stripped-User-Name:-%{User-Name}} ... } Restart the server, and the suffixes should be stripped. The only issue is that Simultaneous-Use may not work properly, due to the mixup between 'user@domain' and 'users'. > * When I run radwho, the Login column includes the suffix for those > users logged in using their suffix. Is there a way to strip the suffix > from the report so that it is not displayed in the radwho results? The above config will do that. > * Is there a way to display the NAS shortname in the 'From' column in > the radwho report. Not right now. > * Can I change the 'detailfile = .....' line in the radius.conf file to > save to a NAS_shortname directory instead of the Client-IP-Address? If > so, what variable name would I use to reference the NAS_shortname? No, sorry. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -------------------------------------------------------------------- This message has originated from, or was processed through, one of the VITALink servers. This message may contain confidential information and is intended only for the individual named. If you are not the named addressee you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail if you have received this e-mail by mistake and delete this e-mail from your system. Email processed by this server is subject to monitoring. E-mail transmission cannot be guaranteed to be secure or error-free as information could be intercepted, corrupted, lost, destroyed, arrive late or incomplete, or contain viruses. The sender therefore does not accept liability for any errors or omissions in the contents of this message, which arise as a result of e-mail transmission. If verification is required please request a hard-copy version. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
