Problems using EAP-TLS with freeradius version 2

Stefan Puch s.puch at web.de
Thu Feb 7 11:54:36 CET 2008


@Arran Cudbard-Bell
 > Write a regular expression to strip off the proceeding \
> Heres one I did earlier.... If I remember correctly it's \\\\ to escape to
> one \ in the username ... \\ To escape it in the RegExp string, \\ to make \
> literal in the regular expression...
I'm not so familiar with regular expressions, but your example works" Thank you
very much! :-)

To make the test certificate being accepted I only hat to remove the leading
"@", beacuse the username in there is "user at example.com" and if stripped to only
"user" not accepted by the radius server.

# This one work with the test certificate, too
if("%{User-Name}" =~ /\\\\?([^\\\\]+)@?([-[:alnum:]._]*)?$/) {
                update request {
                        Stripped-User-Name = "%{1}"
                }
 }

> if("%{User-Name}" =~ /\\\\?([^@\\\\]+)@?([-[:alnum:]._]*)?$/) {
>		update request {
>			Stripped-User-Name = "%{1}"
>		 }
>}
Is there anywhere a more detailed HOWTO for understanding this regular
expression? I would like to understand "fully" what this example does...
Probably I just have to do some "googling"

Now where the test certificates are working (on Win XP AND Windows Mobile) I
will have to investigate again in my old certificates, because my one are only
working with Windows XP supplicant and wpa_supplicant using Linux. The Windows
Mobile supplicant cannot use them correctly although the certificates are the
same one. Very strange!
Finally I can start writing the HOWTO for Windows Mobile devices ;-)




More information about the Freeradius-Users mailing list