From inner to outer
Phil Mayers
p.mayers at imperial.ac.uk
Tue Oct 11 17:45:07 CEST 2011
On 11/10/11 16:08, Roland Hedberg wrote:
> Hi!
>
> I have the following problem. A module I have written uses the inner tunnel User-Name to find information about the user from an outside source.
> This user information must be returned in the outer tunnel.
> Is this doable ?
Sure.
Set a variable in the inner-tunnel reply, then set "use_tunneled_reply =
yes" on the peap/ttls EAP config.
inner-tunnel:
post-auth {
update reply {
Some-Variable := "%{sql:...}"
}
}
default:
post-auth {
if (reply:Some-Variable) {
...
}
}
N.B. If you are using Fast Session resumption, you probably need to
store this info in the Cached-Session-Policy variable.
More information about the Freeradius-Users
mailing list