Problem with external authentication script
Ivan Kalik
tnt at kalik.net
Thu Jun 11 00:54:39 CEST 2009
> exec motp {
> wait = yes
> program = "/usr/local/bin/otpverify.sh %{User-Name}
> %{User-Password} %{reply:Secret} %{reply:PIN} %{reply:Offset}"
> input_pairs = request
> output_pairs = config
> }
>
You have changed them to reply items ...
>
> /etc/freeradius/users:
> DEFAULT Auth-Type = Accept
> Exec-Program-Wait = "/usr/local/bin/otpverify.sh '%{User-Name}'
> '%{User-Password}' '%{reply:Secret}' '%{reply:PIN}' '%{reply:Offset}'",
> Fall-Through = Yes
>
> user1 Secret:=143a5c6fa125ac1f, PIN:=1234, Offset:=0
>
... but configured them as check items. Revert to original exec line and
place user entry *above* DEFAULT entry.
Ivan Kalik
Kalik Informatika ISP
More information about the Freeradius-Users
mailing list