FreeRADIUS and RSA RADIUS Server
Alan DeKok
aland at deployingradius.com
Tue Feb 5 16:34:56 CET 2008
Jakub Morávek wrote:
> In RSA terminology "Agent hosts" is host which sends authetication request.
...
> In my case RSA rejects "user1" access, because RSA thikns, that "user1"
> wants to log into "freeradius" and there is no "freeradius" Agent host
> defined in RSA database.
So... you might need to define one.
> My idea is that freeradius does not send Client-IP-Address attribute and
> therefore RSA RADIUS determines that original host is freeradius proxy
> server.
The Client-IP-Address attribute is not sent in a packet. The RADIUS
protocol uses the originating IP address to determine the client.
I would suggest reading the RSA documentation to see how to make it
think that FreeRADIUS is not the originating host. If the documentation
does not define how to do that, it is likely impossible.
Alan DeKok.
More information about the Freeradius-Users
mailing list