VSA encoding
Alan DeKok
aland at nitros9.org
Wed May 24 18:35:07 CEST 2006
Geoffroy Arnoud <garnoud at yahoo.co.uk> wrote:
> Actually, the vendor has several "projects", each one owning
> potentially 256 attributes.
That's fairly dumb. They should just have used 16-bit attributes,
which would have been compatible with many RADIUS servers.
My suggestion is to fix the clients. I've never seen this before,
so there can't be that many clients out there using this crazy format.
Fix the clients to use 16-bit attributes, and you won't have to modify
the server.
> I assume that if I had to implement its support, attributes name should be of the form
>
> VendorName-ProjectName-AttributeName=foo
I guess. You didn't say who the vendor is, and you didn't answer my
question about existing vendor documentation, so I'd say you're on
you're own.
But honestly, don't change the server. The VSA format is wrong.
Fix the clients. It's a LOT easier to fix the clients now than to
maintain a site-specific patch to FreeRADIUS.
Alan DeKok.
More information about the Freeradius-Users
mailing list