Logging ntlm authentication
Sion
mleasd at gmail.com
Mon Sep 6 10:50:31 CEST 2010
On Fri, Sep 3, 2010 at 10:30 PM, Alan DeKok <aland at deployingradius.com> wrote:
> Sion wrote:
>> This had actually crossed my mind but I had tried testing this in the
>> post-auth section as well.
>>
>> What section should I do this in? Would something like this work?
>>
>> update outer {
>> MS-CHAP-Error = "%{reply:MS-CHAP-Error}"
>> }
>
> You need to refer to a *list*: outer.reply, or outer.control. See
> "man unlang", which has examples.
>
Thanks for the pointers, in the inner-tunnel virtual server I've
changed the 'eap' line in the authenticate section to the following:
Auth-Type EAP {
eap
update outer.control {
MS-CHAP-Error = "%{reply:MS-CHAP-Error}"
}
}
I've also tried outer.reply, but I'm still not seeing it show up in my logs.
> Alan DeKok.
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
More information about the Freeradius-Users
mailing list