Freeradius 2.1.6: Store Cisco device "enable" password inPostgresql DB

Difan Zhao difan.zhao at guest-tek.com
Wed May 5 20:20:50 CEST 2010


Thank you very much Alan! I added the "$" in the safe-characters and it
works great now. However I also added "\" but it doesn't seem to work...
My FreeRadius is also setup to handle PEAP for Windows XP PCs and they
use "domain\username" format. In debug I see:

[sql]   expand: SELECT id, UserName, Attribute, Value, Op   FROM
radcheck   WHERE Username = '%{SQL-User-Name}'   ORDER BY id -> SELECT
id, UserName, Attribute, Value, Op   FROM radcheck   WHERE Username =
'GTCORP=5Cdzhao'   ORDER BY id

As you can see the username "GTCORP\dzhao" becomes "GTCORP=5Cdzhao"...

I do have "\" in the safe-character list:

safe-characters =
"\$@abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789.-_:
/"

Any ideas? Thank you!

Difan Zhao, M.Eng
Network Engineer
difan.zhao at guest-tek.com
www.guest-tek.com
Office: 403-509-1010 ext 3048
Cell: 403-689-7514
 
-----Original Message-----
From:
freeradius-users-bounces+difan.zhao=guest-tek.com at lists.freeradius.org
[mailto:freeradius-users-bounces+difan.zhao=guest-tek.com at lists.freeradi
us.org] On Behalf Of Alan DeKok
Sent: Wednesday, May 05, 2010 1:53 AM
To: FreeRadius users mailing list
Subject: Re: Freeradius 2.1.6: Store Cisco device "enable" password
inPostgresql DB

Difan Zhao wrote:
> And it doesn't work. Then I am checking the debug and I found that the
"$" in the username was interpreted to something like "=24":

  Read raddb/sql/postgresql/dialup.conf, and look for "safe-characters"

  Alan DeKok.
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html




More information about the Freeradius-Users mailing list