[rad] Re: Problem with external authentication script

Charles Gregory cgregory at hwcn.org
Wed Jun 17 22:25:07 CEST 2009

On Wed, 17 Jun 2009, Stefan Kuegler wrote:
> /etc/freeradius/users
> ---------------------
> DEFAULT   Auth-Type = MOTP
> 	  Exec-Program-Wait = "/usr/local/bin/otpverify.sh '%{User-Name}'
> '%{User-Password}' '%{Secret}' '%{PIN}' '%{Offset}'",
>           Fall-Through = yes
> user1 Secret:=143a5c6fa125ac1f, PIN:=1234, Offset:=0

If this is correctly represents the order of your entries, then your 
program execution command is getting 'constructed' on the DEFAULT entry 
*before* you assign those values on the 'user1' entry.

Try moving the user1 line before the DEFAULT (and reverse the 'fall 
through' specifications)....

- Charles

More information about the Freeradius-Users mailing list