eap sim authorization problem
raptor raptor
raptorspor at gmail.com
Thu May 30 17:02:25 CEST 2013
Hi, Phil
Better yet, don't use the "suffix" module; look for the realm and strip it
yourself:
authorize {
if (User-Name =~ /^(.*)@(.+)$/) {
update request {
Stripped-User-Name := "%{1}"
Realm := "%{2}"
}
}
}
See the policy.conf/policy.d and list archives for better regexps for
NAI-style usernames.
is it in policy.conf or sites-enabled/default?
if in policy.conf i can't find format like authorize {}, but i find
cui_authorize
On Thu, May 30, 2013 at 4:08 PM, Phil Mayers <p.mayers at imperial.ac.uk>wrote:
> On 30/05/13 08:16, Iliya Peregoudov wrote:
>
>> You should designate realm wlan.mnc001.mcc510.**3gppnetwork.org<http://wlan.mnc001.mcc510.3gppnetwork.org>as locally
>> served in raddb/proxy.conf:
>>
>
> Better yet, don't use the "suffix" module; look for the realm and strip it
> yourself:
>
> authorize {
> if (User-Name =~ /^(.*)@(.+)$/) {
> update request {
> Stripped-User-Name := "%{1}"
> Realm := "%{2}"
> }
> }
> }
>
> See the policy.conf/policy.d and list archives for better regexps for
> NAI-style usernames.
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/**
> list/users.html <http://www.freeradius.org/list/users.html>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20130530/c8b1717b/attachment-0001.html>
More information about the Freeradius-Users
mailing list