EAP and accounting

Angel L. Mateo amateo at um.es
Fri Oct 20 11:12:28 CEST 2006


Hello,

	I am developing my freeradius server (version 1.1.2) to use it in a WPA
wireless environment with EAP authentication.

	Until this moment (without EAP) the accounting information collected by
freeradius is in the form:

- detail-YYYYMMDD:

Fri Oct 20 11:07:59 2006
        User-Name = "<username>@<realm>"
        NAS-Port = 2161
        Service-Type = Framed-User
        Framed-Protocol = PPP
        Framed-IP-Address = X.X.X.X
        Class = 0x69636172756d
        Calling-Station-Id = "172.18.201.166"
        Acct-Status-Type = Start
        Acct-Session-Id = "15D003FA"
        Tunnel-Client-Endpoint:0 = "172.18.201.166"
        Acct-Authentic = RADIUS
        Acct-Delay-Time = 0
        NAS-IP-Address = <nas IP address>
        NAS-Port-Type = Virtual
        Proxy-State = 0x323034
        Client-IP-Address = <client ip address>
        Acct-Unique-Session-Id = "e43a1da655ba3ef3"
        Stripped-User-Name = "<username>"
        Realm = "<realm>"
        Timestamp = 1161335279

- auth-detail-YYYYMMDD:

Packet-Type = Access-Request
Fri Oct 20 11:10:14 2006
        User-Name = "<username>@<realm>"
        User-Password = "190482"
        NAS-Identifier = "<nas id>"
        NAS-IP-Address = <nas ip>
        Proxy-State = 0x323433
        Client-IP-Address = <client ip>

	But with EAP the files has the same form, but username is always
"anonymous", because the real authentication is made through the tunnel
connection.

	I want to know if there is any way to configure radius to log the real
username instead of anonymous in the log files.

	Thanks.


-- 
Angel L. Mateo Martínez
Sección de Telemática
Área de Tecnologías de la Información       _o)
y las Comunicaciones Aplicadas (ATICA)      / \\
http://www.um.es/atica                    _(___V
Tfo: 968367590
Fax: 968398337





More information about the Freeradius-Users mailing list