<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
Hi all,<br>
I am trying to set FreeRADIUS up to manage access through a bunch of
HP 420wl wireless access points...<br>
<br>
My first problem is this... I want any devices that I know about (ie
have their MAC addresses) to join 1 VLAN, wheras if I do not have their
addresses thay join a different VLAN...<br>
<br>
this is what I have got so far (users file):<br>
<br>
## this works - the logs show this authenticates OK:<br>
00-0e-35-31-5c-1b Auth-Type == Local,User-Password ==
"00-0e-35-31-5c-1b" <br>
<br>
## Following doesn't work - always fails on password match<br>
DEFAULT Auth-Type == Local,User-Password != ""<br>
<br>
I've tried all sort of oterh things - User-Password =* "anything"<br>
User-Password =~
".*"<br>
can';t find anything that works<br>
<br>
Thanks in advance for any help<br>
<br>
cheers<br>
<br>
Jim Potter<br>
<br>
<br>
Logs:<br>
<br>
Top bit working OK:<br>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif">rad_recv:
Access-Request packet from host 10.14.99.251:1179,
id=83, length=73<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style=""> </span>User-Name =
"00-0e-35-31-5c-1b"<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style=""> </span>User-Password
= "00-0e-35-31-5c-1b"<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style=""> </span>Processing the
authorize section of radiusd.conf<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif">modcall:
entering group authorize for request 0<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style=""> </span>users: Matched
entry 00-0e-35-31-5c-1b at line 1<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style=""> </span>modcall[authorize]:
module "files" returns ok for request 0<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif">modcall:
group authorize returns ok for request 0<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style="">
</span>rad_check_password:<span style=""> </span>Found
Auth-Type Local<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif">auth:
type Local<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif">auth:
user supplied User-Password matches local
User-Password<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif">Sending
Access-Accept of id 83 to 10.14.99.251:1179<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style="">
</span>Tunnel-Medium-Type:0 = 802<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style="">
</span>Tunnel-Private-Group-Id:0 = "20"<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif"><span
style=""> </span>Tunnel-Type:0
= VLAN<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Helvetica, Arial, sans-serif">Finished
request 0</font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace"><o:p> </o:p></font></p>
<p class="MsoNormal">Bottom bit failing:</p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">rad_recv:
Access-Request packet from host 10.14.99.251:1181,
id=84, length=73<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace"><span
style=""> </span>User-Name =
"00-0e-35-31-5c-1c"<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace"><span
style=""> </span>User-Password
= "00-0e-35-31-5c-1c"<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace"><span
style=""> </span>Processing the
authorize section of radiusd.conf<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">modcall:
entering group authorize for request 0<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace"><span
style=""> </span>users: Matched
entry DEFAULT at line 6<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace"><span
style=""> </span>modcall[authorize]:
module "files" returns ok for request 0<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">modcall:
group authorize returns ok for request 0<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace"><span
style="">
</span>rad_check_password:<span style=""> </span>Found
Auth-Type Local<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">auth:
type Local<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">auth:
user supplied User-Password does NOT match local
User-Password<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">auth:
Failed to validate the user.<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">Delaying
request 0 for 1 seconds<o:p></o:p></font></p>
<p class="MsoNormal"><font face="Courier New, Courier, monospace">Finished
request 0</font></p>
<br>
<br>
</body>
<br />--
<br />This message has been scanned for viruses and
<br />dangerous content by
<a href="http://www.mailscanner.info/"><b>MailScanner</b></a>, and is
<br />believed to be clean.
</html>