rlm_eap: identity does not match User-Name, setting from EAP identity
Alan DeKok
aland at ox.org
Fri Mar 17 23:00:02 CET 2006
Agent Smith <news8080 at yahoo.com> wrote:
> rad_recv: Access-Request packet from host
> 192.168.3.44:1645, id=139, length=139
> User-Name = "UPG\\test"
...
> EAP-Message = 0x0202000f123d4544566a726176616c
...
> rlm_realm: Found realm "NULL"
> rlm_realm: Adding Stripped-User-Name = "test"
Don't strip the user name for EAP.
> rlm_realm: Adding Realm = "NULL"
> rlm_realm: Authentication realm is LOCAL.
*Especially* when the local server is handling the request.
> rlm_eap: Identity does not match User-Name, setting
> from EAP Identity.
> rlm_eap: Failed in handler
> modcall[authenticate]: module "eap" returns invalid
> for request 32
Otherwise this happens.
> Ideally I'd like to make it so that it works either
> way but for now I'll settle with ability to login when
> the domainname was supplied.
If you're using PEAP, then the above stripping is *completely*
unnecessary. Don't do it.
Alan DeKok.
More information about the Freeradius-Users
mailing list