User-Name - Reg Expr - auth-type accept

Michael Poser m.poser at rz.uni-frankfurt.de
Tue Aug 16 17:32:43 CEST 2005 

Hello,

an extraction from my users file

--8<--
DEFAULT User-Name =~ "^([0-9a-fA-F]){6}-([0-9a-fA-F]{6})$" 
        Auth-Type := Accept,
        Reply-Message = "Hallo Regulaerer Ausdruck `%{User-Name}`"
--8<--

My suggestion is: Every Mac-Address has to authenticate. But in real life it
doesn't work:

--8<--
rad_recv: Access-Request packet from host 10.87.80.1:3072, id=181, length=95
        User-Name = "00022d-65fd60"
        User-Password = "geheim"
        NAS-IP-Address = 10.87.80.1
        NAS-Identifier = "Spielzimmer"
        NAS-Port-Type = Wireless-802.11
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
  modcall[authorize]: module "preprocess" returns ok for request 0
  modcall[authorize]: module "chap" returns noop for request 0
  modcall[authorize]: module "mschap" returns noop for request 0
    rlm_realm: No '@' in User-Name = "00022d-65fd60", looking up realm NULL
    rlm_realm: No such realm "NULL"
  modcall[authorize]: module "suffix" returns noop for request 0
  rlm_eap: No EAP-Message, not doing EAP
  modcall[authorize]: module "eap" returns noop for request 0
    users: Matched entry DEFAULT at line 77
radius_xlat:  'Hallo Regulaerer Ausdruck `00022d-65fd60`'
  modcall[authorize]: module "files" returns ok for request 0
modcall: group authorize returns ok for request 0
auth: No authenticate method (Auth-Type) configuration found for the
request: Rejecting the user
auth: Failed to validate the user.
Login incorrect: [00022d-65fd60] (from client lancom-ap port 0)
Delaying request 0 for 1 seconds
Finished request 0
Going to the next request
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Waking up in 1 seconds...
--- Walking the entire request list ---
Sending Access-Reject of id 181 to 10.87.80.1:3072
        Reply-Message = "Hallo Regulaerer Ausdruck `00022d-65fd60`"
Waking up in 4 seconds...
--8<--

The regular expression match with the Mac-Address, but 4 lines behind it,
the log says: "auth: No authenticate method (Auth-Type) configuration found
for the request:" I am confused, in the users file is the statement
"Auth-Type := Accept,". What is wrong?

Kind regards,

  M. Poser

More information about the Freeradius-Users mailing list