Does your WISP run off this same instance of FreeRadius or just using a common database?<br><br>To elaborate on the dilemma; if you configure your freeradius to check the attribute column for the MAC address how would you find the users password since that is associated with the real username not the users attribute...see the issue? By no means am I saying this is impossible but I am saying it would be messy/complex to do such a thing, as you would have to set the authenticate query to grab the mac address to return a real user name to retrieve the remainder of the "user" attributes.<br>
<br>My suggestion is to not hack a way for it to work but figure out a clean way to associate MAC addresses with a useraccount. You may be able to do this by modifying the DB schema and using ID's as pointers(not fun or efficient) but this is obviously not an option for you, so that would than bring you back to using unlang(can't really help you here) or a rlm_perl script(both of these methods "should" work but with more overhead than I would feel comfortable with)<br>
<br>Listen to Ivan...he is alot smarter than me just not always as polite :-p but always makes very good points. The last thing I have to say is that the immediately cheapier way is not always the best way; invest in doing things right and find an appropriate middle ground. Anyways I hope we have helped point you in somewhat of the right direction...you have alot of late nights ahead of you so take care.<br>
<br>--<br>Leigh<br><br><br><div class="gmail_quote">2008/12/15 Nataniel Klug <span dir="ltr"><<a href="mailto:nata@cnett.com.br">nata@cnett.com.br</a>></span><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div bgcolor="#ffffff" text="#000000">
Leigh and Ivan,<br>
<br>
I have a system that works on my WISP and this program is not hackable
(economic reasons -- this would cost too much to alter). As I already
have all my clients MAC address into radcheck table (as a value for
Calling-Station-Id) why can't I use this MAC to authenticate it in my
NAS/AP? This is my question. Why can't I look for the MAC in another
colum besides "Username" colum? There should be some way cheaper to
me...<br>
<br>
Leigh Martell escreveu:
<blockquote type="cite"><div class="Ih2E3d">I completely agree with you! I am still curious to why
adding a user is not an option though. Hopefully we will be
"enlightened" as to why it is not an option.<br>
<br>
</div><div class="gmail_quote"><div class="Ih2E3d">2008/12/15 <span dir="ltr"><<a href="mailto:tnt@kalik.net" target="_blank">tnt@kalik.net</a>></span><br>
</div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">-
hack your radius server?<div class="Ih2E3d"><br>
<br>
- hack your user admin application?<br>
<br>
It is credit to the quality and flexibility of Freeradius that messing<br>
with the radius server comes up as an option at all.<br>
<div><br>
Ivan Kalik<br>
Kalik Informatika ISP</div>
</div></blockquote>
</div>
<br>
</blockquote>
<br>
<pre cols="72">--
Att,
NATANIEL KLUG
<div class="Ih2E3d"><a href="mailto:nata@cnett.com.br" target="_blank">nata@cnett.com.br</a>
LEIA O DIA-A-DIA DO NATA
<a href="http://nataklug.blogspot.com/" target="_blank">http://nataklug.blogspot.com/</a>
Cyber Nett - Internet Banda Larga
<a href="http://www.cnett.com.br" target="_blank">www.cnett.com.br</a>
(42) 3635-2957
Rua Diogo Pinto, 1046, Centro
Laranjeiras do Sul - PR
Brasil - 85301-290
"... também os sábios possuem coração tangível e podem, por vezes, usar da ciência como meio de demonstrar impressões sentimentais de que muitos não os julgam suscetíveis."
Visconde de Taunay</div></pre>
</div>
<br>-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br></blockquote></div><br>