check-eap-tls

Thomas Massip thomas.massip at e-tera.com
Wed Aug 17 16:44:11 CEST 2016


Le 2016-08-17 16:40, Matthew Newton a écrit :
> On Wed, Aug 17, 2016 at 04:29:37PM +0200, Thomas Massip wrote:
>> I try to use the virtual server 'check-eap-tls', but when I start 
>> FreeRadius
>> with '-radiusd -XXXX' I have this error :
> 
> "radiusd -X" should be all that is needed.

I know but I love XXXX :D

> 
>> Wed Aug 17 16:18:39 2016 : Error:
>> /opt/fr3/etc/raddb/sites-enabled/check-eap-tls[63]: Parse error in 
>> condition
>> Wed Aug 17 16:18:39 2016 : Error:
>> /opt/fr3/etc/raddb/sites-enabled/check-eap-tls[63]:
>> ("host/%{TLS-Client-Cert-Common-Name}" == &User-Name) {
>> Wed Aug 17 16:18:39 2016 : Error:
>> /opt/fr3/etc/raddb/sites-enabled/check-eap-tls[63]:  ^ Cannot use 
>> attribute
>> reference on right side of condition
> 
> Hmm, the attribute is on the right side of the condition. Try
> switching them around.
> 
> if (&User-Name == "host/%{TLS-Client-Cert-Common-Name}") {
> 
> It's a typo in the default config. I've pushed a fix.
> 
> Matthew

Ok thanks all, if (&User-Name == "host/%{TLS-Client-Cert-Common-Name}") 
works fine now.


Regards,

Thomas



More information about the Freeradius-Users mailing list