RSA Freeradius Proxy Client IP address
I have an RSA Securid server that is being proxied by FreeRadius. Everything works great. When a client on a remote device authenticates, they are authenticating against the FreeRadius server's address. So I assume FreeRadius is the NAS. How do I force the client device's IP to be the one authenticated, not the FreeRadius server? I think I've tried about every attribute I can think of. And read the RFC's too! -- View this message in context: http://freeradius.1045715.n5.nabble.com/RSA-Freeradius-Proxy-Client-IP-addre... Sent from the FreeRadius - User mailing list archive at Nabble.com.
Locnar wrote:
When a client on a remote device authenticates, they are authenticating against the FreeRadius server's address. So I assume FreeRadius is the NAS. How do I force the client device's IP to be the one authenticated, not the FreeRadius server?
I think I've tried about every attribute I can think of. And read the RFC's too!
There is no standard way to do this. You'll have to add a VSA yourself, and then add it during the pre-proxy stage. Alan DeKok.
participants (2)
-
Alan DeKok -
Locnar