Re: unlang question

2009-03-20 Thread Bruce_M_Richardson
> $ man unlang > > Everything following the "if" statement MUST be all on one line of text. > > Alan DeKok. > - Ok thanks, I don't think that is clear on http://freeradius.org/radiusd/man/unlang.html . I now have ... if("%{request:Stripped-User-Name}" !~ /visitor[0-9]?[

Re: unlang question

2009-03-20 Thread Bruce_M_Richardson
> Don't open and close brackets on the same line. Have a look at Arran's > statement. Ok I tried this ... if("%{request:Stripped-User-Name}" !~ /visitor[0-9]?[0-9]/i) { reject } and got this

Re: unlang question

2009-03-20 Thread Bruce_M_Richardson
> if(("%{request:Service-Type}" == 'whatever') && > ("%{request:Stripped-User-Name}" !~ > /visitor[0-9]?[0-9]/i)) { >reject > } > I don't think naked attribute names were supported in 2.0.5.. Thanks Ivan and Arran , in fact there is only one Service-Type (Login-User ). so I chan

unlang question

2009-03-20 Thread Bruce_M_Richardson
Hi, I have freeRADIUS 2.0.5 authenticating against LDAP via eap and this has been working perfectly since last year. Now a I have a new requirement to authenticate another set of users in the same LDAP tree onto a different service. These users will be visitors to our site and will have the us

Re: eDirectory + peap + LDAP + Cisco AP1242 + Windows XP(SP3)

2008-09-04 Thread Bruce_M_Richardson
OK, this makes a little more sense now, I added .. realm DEFAULT { } to proxy.conf, I now get rlm_realm: Looking up realm "HOST" for User-Name = "HOST\NAME" rlm_realm: Found realm "DEFAULT" rlm_realm: Adding Stripped-User-Name = "NAME" rlm_realm: Adding Realm = "DEFAULT"

Re: eDirectory + peap + LDAP + Cisco AP1242 + Windows XP(SP3)

2008-09-04 Thread Bruce_M_Richardson
Hi, I don't necessarily want to use realms, it just says in the documentation that is the way it should be done. If there is a simpler way, I'm happy to use it, as I said before this is the last part of the puzzle and I just want to roll it out. So should I create a realm called DEFAULT, or is D

Re: eDirectory + peap + LDAP + Cisco AP1242 + Windows XP(SP3)

2008-09-04 Thread Bruce_M_Richardson
Apologies, but I am confused about this. .. As I understand it the prefix realm should match my PCs output of PC12345\NAME and create a Stripped-User-Name with just the NAME in it. But this does not seem be working ... rlm_realm: Looking up realm "PC012292" for User-Name = "PC012292\ITSBMR"

eDirectory + peap + LDAP + Cisco AP1242 + Windows XP(SP3)

2008-09-03 Thread Bruce_M_Richardson
Hi, having read scores of posts to this and other lists I am almost there, many of you have helped already without knowing it. I'm using FreeRADIUS Version 2.0.5, compiled with the eDir extension. I can get it to work if I un-tick the box on XP that says "Automatically use my Windows login name