Hi there,
I have a question about prefix realms and stripping them. I have a provider
that allows roaming dialup for our customers. They require the username to
be in a format of idm/something/username. I get the whole
idm/something/username delivered to me as the authentication.
I have
Hi,
Can I strip the idm/something/ somehow?
sure. a simple strip in the config would work...
or unlang of course.
eg in radiusd.conf
attr_rewrite copy.user-name {
attribute = Stripped-User-Name
new_attribute = yes
searchfor =
searchin = packet
replacewith = %{User-Name}
}
attr_rewrite
Hi,
I have two questions regarding EAP an REALM, realm first.
In every request i get:
rlm_realm: No '@' in User-Name = 00-17-f2-ea-b1-3e, looking up
realm NULL
rlm_realm: No such realm NULL
I wonder what that mean if/how to turn that off? Or should i even care?
dont worry! it
Realm - since you are not using realms it is as expected. You can forget
about that one.
EAP - yes, your AP doesn't have EAP (802.1x) enabled.
Ivan Kalik
Kalik Informatika ISP
Dana 16/9/2007, Piero Giobbi [EMAIL PROTECTED] piše:
Hi again all, sorry for spamming the list.
I have two questions
Hmmm this might be overly complicated but you could configure realm1
to proxy back to yourself, stripping the realm, then configure each of
the other two as local realms? I imagine there must be a nicer way...
Alex
On 20/08/07, Jeff Crowe [EMAIL PROTECTED] wrote:
Hi all,
Sorry if this
Hi all,
Sorry if this question has been answered (I did search the archives and
google to no avail): I have subscribers that connect with 2 realms as the
prefix. How do I strip both and just authenticate locally?
IE: username: realm1/realm2/username or realm1/realm3/username. Realm1
will
Is there a way of getting radius to authenicate on the username before
the @ sign and ignore the realm?
Yes, but you have to edit the users file to get rid of the
@realm portion, and configure the realms as LOCAL ones.
The object is to not to have to configure any realms as local.
So that
TS [EMAIL PROTECTED] wrote:
The object is to not to have to configure any realms as local.
That conflicts directly with your requirement to allow users to log
in as user or [EMAIL PROTECTED].
If I have a user whose username is [EMAIL PROTECTED] I can easily specify
arealm.com as local. But
On Tuesday 25 April 2006 01:43, TS wrote:
What does debugging mode say?
Exactly what you'd expect it to say if the realm isn't in proxy.conf:
#
rad_recv: Access-Request packet from host 127.0.0.1:33499, id=115,
length=68 User-Name = [EMAIL PROTECTED]
User-Password = acc355
Hi all
We have a radius setup that we use to authenticate our own adsl users as
well as proxying radius to 2 other sources.
Our own radius entries use a realm after each username, a typical entry is:
[EMAIL PROTECTED] Password == secret
Service-Type = Framed-User,
TS [EMAIL PROTECTED] wrote:
Is there a way of getting radius to authenicate on the username before the @
sign and ignore the realm?
Yes, but you have to edit the users file to get rid of the
@realm portion, and configure the realms as LOCAL ones.
Obviously if the realm is one that we proxy
jesk [EMAIL PROTECTED] wrote:
am i right, that there is no way to do it?
Yes, there is.
See the realms module.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
hi again,
i got a username with realms like this: realm1/foobar%realm2
is there a way to use realm2 as proxy realm local and get
realm1 stripped away?
i dont want realm1 for authorizing, authentication and accounting.
thanks in advance,
christian
-
List info/subscribe/unsubscribe? See
On Thursday 13 May 2004 09:19, jesk wrote:
hi again,
i got a username with realms like this: realm1/foobar%realm2
is there a way to use realm2 as proxy realm local and get
realm1 stripped away?
i dont want realm1 for authorizing, authentication and accounting.
thanks in advance,
14 matches
Mail list logo