Re: wrong user name is stored in mysql radacct table
On Fri, 2007-03-02 at 17:13 +0100, Alan DeKok wrote:
Zeli Kartzman wrote:
i was thinking the NAS had something to do with it. is there any way i can get the NAS to send me the correct user name? we are using cisco aironet for access points running IOS 12.3.
No... what I said was that's what the USER is using to log in. The NAS just sends what the user types.
or is there any other way to get the correct user name into the table? thanks
Get the users to type something else?
Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
so what you're saying is that effectively a user can get around the simultaneous user limit and login as many times as they want -- all they have to do is type a new outside identity each time and as long as the tunneled PEAP identity is correct they will be allowed to login? bz
Zeli Kartzman wrote:
so what you're saying is that effectively a user can get around the simultaneous user limit and login as many times as they want -- all they have to do is type a new outside identity each time and as long as the tunneled PEAP identity is correct they will be allowed to login?
If you configure it that way, yes. The server *can* be configured to enforce simultaneous login limits no matter what the users type into the outer session. The docs don't describe how to do this, but they DO describe how to tie the inner & outer sessions together, and also how to enforce simultaneous login. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
participants (2)
-
Alan DeKok -
Zeli Kartzman