attr_rewrite

Дмитрий snaut at snaut.ru
Fri Dec 7 10:32:25 CET 2007


Good afternoon! I have a problem. The user will be authorized with a login
in the form of 123456 at realm1, it is necessary, that freeradius transformed 
its login 123456 at realm2... And so for all users. How to make? TRIED:
 
radiusd.conf:
        attr_rewrite User-Name {
                attribute = User-Name
                searchin = packet
                searchfor = "realm1"
                replacewith = "realm2"
                ignore_case = yes
                new_attribute = yes
                max_matches = 1
                append = yes
        }
 
authorize {
        Autz-Type unknown {
                files
        }
        User-Name
        preprocess
        chap
        mschap
        suffix
        files
        sqlauth
}
 
in radiusd -X:
 
        User-Name = "123456 at realm1"
        User-Password = "EBLAImXtaUidLnSa"
        NAS-IP-Address = 10.173.65.200
rad_lowerpair:  User-Name now '123456 at realm1'
  Processing the authorize section of radiusd.conf
modcall: entering group authorize for request 0
radius_xlat:  'realm2'
rlm_attr_rewrite: Added attribute User-Name with value 'realm2'
  modcall[authorize]: module "User-Name" returns ok for request 0
  modcall[authorize]: module "preprocess" returns ok for request 0
  modcall[authorize]: module "chap" returns noop for request 0
  modcall[authorize]: module "mschap" returns noop for request 0
    rlm_realm: Looking up realm "realm1" for User-Name = "123456 at realm
<mailto:123456 at realm2> 1"
    rlm_realm: Found realm "realm1"
    rlm_realm: Proxying request from user 123456 to realm realm1
    rlm_realm: Adding Realm = "123456"
    rlm_realm: Authentication realm is LOCAL.
  modcall[authorize]: module "suffix" returns noop for request 0
    users: Matched entry DEFAULT at line 3
  modcall[authorize]: module "files" returns ok for request 0
radius_xlat:  '123456 at realm1'
rlm_sql (sqlauth): sql_set_user escaped user --> '123456 at realm1'
radius_xlat:  'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE
Username = '123456 at realm1' ORDER BY id'

 
	 Сысоев Дмитрий Александрович	
Сетевой администратор	
Отдел информационных технологий	
ЗАО ''Ульяновская Сотовая Связь''	
Тел.:	 +7 (901) 947 17 31	
Моб.:	 +7 (901) 947 02 71	
Факс:	 +7 (8422) 43 51 99	
 
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20071207/bf4234c2/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Logo.jpg
Type: image/jpeg
Size: 1972 bytes
Desc: not available
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20071207/bf4234c2/attachment.jpg>


More information about the Freeradius-Users mailing list