Agent Smith <news8080@yahoo.com> wrote:
rad_recv: Access-Request packet from host 192.168.3.44:1645, id=139, length=139 User-Name = "UPG\\test" ... EAP-Message = 0x0202000f123d4544566a726176616c ... rlm_realm: Found realm "NULL" rlm_realm: Adding Stripped-User-Name = "test"
Don't strip the user name for EAP.
rlm_realm: Adding Realm = "NULL" rlm_realm: Authentication realm is LOCAL.
*Especially* when the local server is handling the request.
rlm_eap: Identity does not match User-Name, setting from EAP Identity. rlm_eap: Failed in handler modcall[authenticate]: module "eap" returns invalid for request 32
Otherwise this happens.
Ideally I'd like to make it so that it works either way but for now I'll settle with ability to login when the domainname was supplied.
If you're using PEAP, then the above stripping is *completely* unnecessary. Don't do it. Alan DeKok.