SV: SV: SV: EXEC Access-challenge

Thomas Raabo - Zitcom A/S tr at zitcom.dk
Thu Oct 11 14:53:59 CEST 2012


Ups. The output was copy-pasted wrong.



Med venlig hilsen | Best regards
Thomas Raabo
Senior Network Engineer CCIE #33466



_____________________________________________
tr at zitcom.dk | Direkte: +45 69 10 60 18 | Tlf.: +45 70 23 55 66


-----Oprindelig meddelelse-----
Fra: freeradius-users-bounces+tr=zitcom.dk at lists.freeradius.org [mailto:freeradius-users-bounces+tr=zitcom.dk at lists.freeradius.org] På vegne af Thomas Raabo - Zitcom A/S
Sendt: 11. oktober 2012 14:48
Til: FreeRadius users mailing list
Emne: SV: SV: SV: EXEC Access-challenge

Thanks phil...

I´am close now.

The only thing missing to getting this workin is getting the state number to the script.

On the second run after the challenge I don't get the state number passed..

++[logintime] returns noop
[pap] Normalizing SHA-Password from hex encoding [pap] WARNING: Auth-Type already set.  Not setting to PAP
++[pap] returns noop
[ZOTP]  expand: %{User-Name} -> test2
[ZOTP]  expand: %{User-Password} -> test2
[ZOTP]  expand: %{reply:Secret} -> 891a79d80c9f1cd2 
[ZOTP]  expand: %{reply:Pin} -> 0201 
[ZOTP]  expand: %{reply:Offset} -> 1 
[ZOTP]  expand: %{reply:State} -> 
Exec-Program output: Reply-Message += "Enter OTP", State += "12160",
Exec-Program-Wait: value-pairs: Reply-Message += "Enter OTP", State += "12160",
Exec-Program: returned: 9
++[ZOTP] returns updated
++? if (updated)
? Evaluating (updated) -> TRUE
++? if (updated) -> TRUE
++- entering if (updated) {...}
+++[control] returns updated
+++[handled] returns handled
++- if (updated) returns handled
Sending Access-Challenge of id 73 to 172.31.2.20 port 40108
        Reply-Message += "Enter OTP"
        State += 0x3132313630

Should I not be able to get it out with reply:State in the exec?


Med venlig hilsen | Best regards
Thomas Raabo
Senior Network Engineer CCIE #33466



_____________________________________________
tr at zitcom.dk | Direkte: +45 69 10 60 18 | Tlf.: +45 70 23 55 66


-----Oprindelig meddelelse-----
Fra: freeradius-users-bounces+tr=zitcom.dk at lists.freeradius.org [mailto:freeradius-users-bounces+tr=zitcom.dk at lists.freeradius.org] På vegne af Phil Mayers
Sendt: 11. oktober 2012 13:30
Til: freeradius-users at lists.freeradius.org
Emne: Re: SV: SV: EXEC Access-challenge

On 11/10/12 11:53, Thomas Raabo - Zitcom A/S wrote:
> How do you change the order it phil?

You type things in the right order.

As per my original email, do this:

authorize {
  ...
  YOUR_EXEC_MODULE
  if (updated) {
    ...
  }
  ...
}
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html


More information about the Freeradius-Users mailing list