New User and AD Question
McNutt, Justin M.
McNuttJ at missouri.edu
Mon Feb 28 22:41:16 CET 2011
I don't have a modules/prefix file. I have a preprocess file, which is called at the top of the "authorize" section of the campus-eap virtual server (this is the default, I believe).
>From the debug log, request 9:
server campus-eap {
+- entering group authorize {...}
++[preprocess] returns ok
++[chap] returns noop
++[mschap] returns noop
[suffix] No '@' in User-Name = "host/doit-tcb-agl.col.missouri.edu", looking up realm NULL
[suffix] No such realm "NULL"
++[suffix] returns noop
The preacct section of raddb/sites-available/campus-eap has this as well.
Several files make mention of the "realm" module. In this case, I'm trying to use "DOIT-TCB-AGL" as the "user name" and "COL.MISSOURI.EDU" as the realm (or domain). What I'm not clear on is how to code a realm { } section to match this:
"host/$USER.$REALM" where the first dot is a delimiter, the remaining dots are part of the realm, and the prefix "host/" is only used to identify that this section should be used to process the ID.
Or am I going off in the completely wrong direction here?
--J
> -----Original Message-----
> From:
> freeradius-users-bounces+mcnuttj=missouri.edu at lists.freeradius
> .org
> [mailto:freeradius-users-bounces+mcnuttj=missouri.edu at lists.fr
> eeradius.org] On Behalf Of Alan Buxey
> Sent: Monday, February 28, 2011 3:16 PM
> To: FreeRadius users mailing list
> Subject: Re: New User and AD Question
>
> hi,
>
> in your campus-eap virtual server you are not making a call to
> eg the prefix module (put straight after the preprocess module)
>
> ie
>
> preprocess
> suffix
> ntdomain
>
>
> do this in the authorization and preacct sections to handle
> these better
>
>
> alan
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
More information about the Freeradius-Users
mailing list