Along with enabling user_tunneled_reply=yes etc.. I am also updating the outer tunnel with the inner tunnel username like this:<br><br>update outer.reply {<br> User-Name = "%{request:User-Name}"<br>
}<br>in ./sites-enabled/inner-tunnel<br><br>Watching radius debug I can even see attr_filter.access_reject expand User-Name because it uses it as its key.<br><br>I do have sql reject logging fine in other radius server setups. I read the short doc here: <a href="http://freeradius.org/radiusd/doc/Post-Auth-Type">http://freeradius.org/radiusd/doc/Post-Auth-Type</a> and have searched via google. Im sorry I just cannot figure this one out. I even see attr_filter. I cannot get Freeradius to log the username in eap/peap login rejects.<br>
<br>Thanks again.<br><br>-Josh<br><br><div class="gmail_quote">On Fri, Mar 16, 2012 at 4:55 PM, Josh Hiner <span dir="ltr"><<a href="mailto:josh@remc1.org">josh@remc1.org</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
Hello. Im running freeradius 2.1.6 and logging to /var/log/radius in file/detail format. Currently connection logging is working if the user authenticates correctly. I cant get access rejects to log though. Ive turned on reply detail but that is only showing successful attempts too.<br>
<br>I have : use_tunneled_reply = yes and copy_request_to_tunnel = yes in eap.conf (need that to do group checking in the users file) but this does not seem to effect the issue of no rejected logins being logged. Searched this email list as well as online. Sorry to bother.<br>
<br>Any info would be great. I appreciate your time. Thanks!!!<span class="HOEnZb"><font color="#888888"><br><br>-Josh<br>
</font></span></blockquote></div><br>