Help with eduroam proxying config
Mohamed Lrhazi
Mohamed.Lrhazi at georgetown.edu
Wed Mar 11 15:46:36 CET 2015
Hello,
With this config, I want to say: anyuser at anything.edu should go to eduroam,
but I get a warning that it wont be the case.. What's the correct config:
Thanks a lot,
Mohamed.
proxy.conf:
home_server eduroam1 {
type = auth
ipaddr = tlrs1.eduroam.us
port = 1645
secret = eduroam_radius_secret
}
home_server eduroam2 {
type = auth
ipaddr = tlrs2.eduroam.us
port = 1645
secret = eduroam_radius_secret
}
home_server_pool eduroam {
type = fail-over
home_server = eduroam1
home_server = eduroam2
}
realm LOCAL {
}
realm NULL {
}
realm georgetown.edu {
}
realm gu.edu {
}
realm "~(.*\\.)+edu$" {
nostrip
auth_pool = eduroam
}
realm DEFAULT{
nostrip
}
radius/radacct/172.17.0.187/auth-detail-20150311
(0) auth_log : EXPAND %t
(0) auth_log : --> Wed Mar 11 14:32:10 2015
(0) [auth_log] = ok
(0) [chap] = noop
(0) [mschap] = noop
(0) [digest] = noop
(0) suffix : Looking up realm "foo.edu" for User-Name = "ml623 at foo.edu"
(0) suffix : Found realm "~(.*\.)+edu$"
(0) suffix : Adding Realm = "foo.edu"
(0) suffix : Proxying request from user ml623 at foo.edu to realm ~(.*\.)+edu$
(0) suffix : Preparing to proxy authentication request to realm
"~(.*\.)+edu$"
(0) [suffix] = updated
(0) if ("%{Realm}" != 'NULL' && "%{Realm}" != 'LOCAL' && "%{Realm}" !~
/\\.edu$/)
(0) EXPAND %{Realm}
(0) --> foo.edu
(0) EXPAND %{Realm}
(0) --> foo.edu
(0) EXPAND %{Realm}
(0) --> foo.edu
(0) if ("%{Realm}" != 'NULL' && "%{Realm}" != 'LOCAL' && "%{Realm}" !~
/\\.edu$/) -> FALSE
(0) eap : EAP packet type response id 0 length 18
(0) eap : EAP-Identity reply, returning 'ok' so we can short-circuit the
rest of authorize
(0) [eap] = ok
(0) } # authorize = ok
(0) WARNING: You set Proxy-To-Realm = DEFAULT, but it is a LOCAL realm!
Cancelling proxy request.
(0) Found Auth-Type = EAP
More information about the Freeradius-Users
mailing list