Freeradius, Cisco WLC, Mac address auth.
Brian Ertel
bsertel at amherst.edu
Mon Aug 27 15:42:01 CEST 2007
Alan,
I now have the users file syntax like this:
00:0e:35:1c:e0:52 Cleartext-Password := "testing"
Tunnel-Medium-Type = "IEEE-802",
Tunnel-Type = "VLAN",
Tunnel-Private-Group-Id = "157",
But when radius returns the following error when attempting to start...
/etc/raddb/users[80]: Parse error (check) for entry 00:0e:35:1c:e0:52:
Unknown attribute "Cleartext-Password"
Errors reading /etc/raddb/users
radiusd.conf[1059]: files: Module instantiation failed.
radiusd.conf[1837] Unknown module "files".
radiusd.conf[1773] Failed to parse authorize section.
Brian.
-----Original Message-----
From: freeradius-users-bounces at lists.freeradius.org
[mailto:freeradius-users-bounces at lists.freeradius.org] On Behalf Of Alan
DeKok
Sent: Monday, August 27, 2007 9:12 AM
To: FreeRadius users mailing list
Subject: Re: Freeradius, Cisco WLC, Mac address auth.
Brian Ertel wrote:
> DEFAULT User-Name =~ "([0-9a-fA-F]:)5[0-9a-fA-F]", Auth-Type :=
Accept
> ... vlan stuff
>
> So for username are you saying I can use any old text string?
What leads you to conclude that? Have read the documentation for the
"users" file? Do you know what a regular expression is?
> Also you instructed to list all known mac addresses first should they
be
> "listed" in the following way:
>
> 00:0e:35:1c:e0:52 User "Cleartext-Password := ..."
No, that's not what I said.
Go read "man users", and the comments at the top of the "users" file
to see what an entry looks like. What you have above is nonsense. The
word "User" doesn't belong. You don't need quotes around all of the
Cleartext-Password stuff. What you need is:
00:0e:35:1c:e0:52 Cleartext-Password := "whatever_the_password_is"
... vlan stuff
And don't ask if the password should be "whatever_the_password_is".
Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list