How to reject when a user logs in without realm?
Ivan Kalik
tnt at kalik.net
Wed Jul 15 16:30:59 CEST 2009
> Hope you are referring to
> realm freescale.com {
> type = radius
> authhost = LOCAL
> accthost = LOCAL
>
> present in the radiusd.conf file. removed it. Restarted the freeradius
> server.
>
> The user file contains
> navin at freescale.com Cleartext-Password := "navin123"
>
> Even then when tested with radtest tool , the users "navin" &
> "navin at freescale.com"
> are both getting authenticated. I would prefer only
> navin at freescale.com get authenticated
> and user "navin" should get rejected.
There is something else there then as well. Post the debug for navin. You
can probably safely disable suffix as well. But lets first see what is
stripping the username. There is nothing in the default configuration that
does that.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list