Ok, I've made a little progress. The perl script is now being called correctly and returning the correct data. There seems to be something else now.
Yes, there is something else.
I added DEFAULT Auth-Type = Perl Fall-Through = 1 to users, I think that's what you were wanting.
Fine. Only you haven't listed files in inner-tunnel, so this is never used.
Inner-tunnel authorize ------------------------------ Authorize {
Mschap Suffix
Update control { Proxy-To-Realm := LOCAL }
Remove that.
Eap { Ok=return } Perl Expiration Logintime Pap }
..
perl_pool: item 0x8192020 asigned new request. Handled so far: 1 found interpetator at address 0x8192020 rlm_perl: Added pair User-Name = testUser rlm_perl: Added pair EAP-Message = 0x0207000d016c6a61636b736f6e rlm_perl: Added pair EAP-Type = Identity rlm_perl: Added pair FreeRADIUS-Proxied-To = 127.0.0.1 rlm_perl: Added pair Filter-Id = Enterasys:version=1:policy=CCP_Student rlm_perl: Added pair Cleartext-Password = password09 rlm_perl: Added pair Proxy-To-Realm = LOCAL rlm_perl: Added pair EAP-Type = MS-CHAP-V2 perl_pool total/active/spare [64/0/64] Unreserve perl at address 0x8192020 ++[perl] returns ok ++[expiration] returns noop ++[logintime] returns noop rlm_pap: No clear-text password in the request. Not performing PAP. ++[pap] returns noop auth: type Local
This is breaking EAP. Remove forcing Auth-Type Local. Ivan Kalik Kalik Informatika ISP