Removing domain prefix from login
Alejandro Gandara
agandara at optaresolutions.com
Thu Nov 10 17:27:07 CET 2011
2011/11/10 Alan Buxey <A.L.M.Buxey at lboro.ac.uk>
> Hi,
>
> > rad_recv: Access-Request packet from host 172.20.40.11 port 1025, id=21,
> length=218
>
> <snip>
> > User-Name = "OPTARE\\brouco"
>
> I know this, thats why i need try to remove this prefix. At first i
thought i could do with module/realm. But I didnt get good results.
> <snip>
>
> all okay....but then:
>
> > # Executing section authorize from file
> /etc/freeradius/sites-enabled/default
> > +- entering group authorize {...}
> > ++[preprocess] returns ok
> > ++[mschap] returns noop
> > ++[digest] returns noop
> > [ldap] performing user authorization for brouco
> > [ldap] expand: %{Stripped-User-Name} ->
>
> no stripped-user-name
>
I think the problem is eap is looking for User-name and i need it looks for
stripped....
>
> and User-Name is brouco - but thats not what the client sent. they sent
> OPTARE\\brouco -
> so your reply reference something they didnt send.
>
>
> have you got 'ntdomain' module enabled in your virtual servers - just
> after the 'preprocess'
> is called?
>
> alan
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
Regards,
Alejandro
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20111110/1b59c50e/attachment.html>
More information about the Freeradius-Users
mailing list