password in EAP request

Tim Sylvester tim.sylvester at networkradius.com
Wed Oct 5 22:49:06 CEST 2011


In example.pl perl script $RAD_REQUEST{'User-Name'} returns the username of
the EAP request message. How can I get the password of the
EAP request? $RAD_REQUEST{'User-Password'} won't return the password.

[<Tim>] You can't. RADIUS Access-Request packets that use EAP do not send
the password to the RADIUS server. The only attributes you can access are
the ones sent in the RADIUS request, which are listed below in the debug
output.

 

rad_recv: Access-Request packet from host 24.26.79.31 port 50168, id=207,
length=185
        User-Name = "test"
        NAS-IP-Address = 10.0.0.31
        NAS-Identifier = "belair"
        NAS-Port = 0
        Called-Station-Id = "00-0D-67-12-15-80:SSO_BelAir-PMIP-8021x"
        Calling-Station-Id = "00-26-4A-FC-EB-B2"
        Framed-MTU = 1400
        NAS-Port-Type = Wireless-802.11
        Connect-Info = "CONNECT 11Mbps 802.11b"
        EAP-Message = 0x020100060319
        State = 0xce81437fce8047c9464d6ff62d386d00
        Message-Authenticator = 0x5feafac09a6cce51d36958efc628f397



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20111005/91bef436/attachment.html>


More information about the Freeradius-Users mailing list