Returning Multiple Reply Items problem ?

Robert Roll Robert.Roll at utah.edu
Wed Jun 22 16:08:38 CEST 2011 

 Ok, I seem to have found some information on the net ..

 Is it as simple as changing the '=' to '+=' when 
creating the ldap entry ?

   i.e.  from:   cisco-avpair="tunnel-private-group-ID(#81)=noc

             to:

                     cisco-avpair+="tunnel-private-group-ID(#81)=noc

 Currently, I use a GENERIC attribute for replyItem, so even though the
documentation seems to indicate an operator might be defined in lap.attrmap
for the particular replyitem, I don't think I want to do this  ?

Thanks,

Robert

                    
________________________________________
From: freeradius-users-bounces+robert.roll=utah.edu at lists.freeradius.org [freeradius-users-bounces+robert.roll=utah.edu at lists.freeradius.org] On Behalf Of Robert Roll [Robert.Roll at utah.edu]
Sent: Wednesday, June 22, 2011 7:38 AM
To: freeradius-users at lists.freeradius.org
Subject: Returning Multiple Reply Items problem ?

 I seen to have encountered a problem with returning multiple
reply-item attributes ?  They seem to be found, but only some arereturned...
see the debug snippets below...

It seems if they have the same name, only one of them gets returned ?
However, for the Cisco-AVPair attributes, it is very common to need
to define many of them ? Is there a way to get them all returned ?

Currently running  2.1.10 ..


Thanks,

Robert


i.e.

#####  Seem to be found in Directory ##############3

[ldapADutVLANs] looking for reply items in directory...
  [ldapADutVLANs] extracted attribute Airespace-Interface-Name from generic item Airespace-Interface-Name=wifi-hist-uconnect
  [ldapADutVLANs] extracted attribute Airespace-Interface-Name from generic item Airespace-Interface-Name=wifi-noc-uconnect
  [ldapADutVLANs] extracted attribute Cisco-AVPair from generic item cisco-avpair="tunnel-private-group-ID(#81)=noc"
  [ldapADutVLANs] extracted attribute Cisco-AVPair from generic item cisco-avpair="tunnel-medium-type(#65)=802 media(6)"
  [ldapADutVLANs] extracted attribute Cisco-AVPair from generic item cisco-avpair="tunnel-type(#64)=VLAN(13)"


## However when they need to be returned, only one of each gets returned ? ######

[peap] Using saved attributes from the original Access-Accept
       Airespace-Interface-Name = "wifi-hist-uconnect"
       Cisco-AVPair = "tunnel-private-group-ID(#81)=noc"

Sending Access-Accept of id 11 to 155.97.142.192 port 53533
        Airespace-Interface-Name = "wifi-hist-uconnect"
        Cisco-AVPair = "tunnel-private-group-ID(#81)=noc"

-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

More information about the Freeradius-Users mailing list