Value-pairs from exec script

A.L.M.Buxey at A.L.M.Buxey at
Wed Mar 6 21:52:19 CET 2013


>    Here's a paste of it ( I took
>    the script and modified the authorize section. I'm trying to
>    allow users to walk/roam between access points without having to
>    re-authenticate when they get handed off to the new access point. I set
>    the APs to try mac authentication first, then my script runs and checks if
>    they were previously authenticated at another AP. If so, it disconnects
>    them from the old AP and reconnects them to the new AP and the user
>    doesn't have to log in again. 
>    That all works. The only thing is that when a user moves from one AP to
>    another and gets authenticated via their mac address, the username in the
>    radacct SQL table is set to the mac address. I'm trying to change
>    User-Name to the actual username. I'm just getting a second User-Name pair
>    instead of replacing the existing one.

I assume that you cant use any of the 802.11 inter-AP roaming protocols
that would allow native roaming without the re-auth at all?  or that
you have APs that dont have a central controller that can do roaming/mobility?

why play with User-Name - you could use another local temporary attribute
for the test/update that you are doing


More information about the Freeradius-Users mailing list