check-eap-tls
Thomas Massip
thomas.massip at e-tera.com
Wed Aug 17 16:44:11 CEST 2016
Le 2016-08-17 16:40, Matthew Newton a écrit :
> On Wed, Aug 17, 2016 at 04:29:37PM +0200, Thomas Massip wrote:
>> I try to use the virtual server 'check-eap-tls', but when I start
>> FreeRadius
>> with '-radiusd -XXXX' I have this error :
>
> "radiusd -X" should be all that is needed.
I know but I love XXXX :D
>
>> Wed Aug 17 16:18:39 2016 : Error:
>> /opt/fr3/etc/raddb/sites-enabled/check-eap-tls[63]: Parse error in
>> condition
>> Wed Aug 17 16:18:39 2016 : Error:
>> /opt/fr3/etc/raddb/sites-enabled/check-eap-tls[63]:
>> ("host/%{TLS-Client-Cert-Common-Name}" == &User-Name) {
>> Wed Aug 17 16:18:39 2016 : Error:
>> /opt/fr3/etc/raddb/sites-enabled/check-eap-tls[63]: ^ Cannot use
>> attribute
>> reference on right side of condition
>
> Hmm, the attribute is on the right side of the condition. Try
> switching them around.
>
> if (&User-Name == "host/%{TLS-Client-Cert-Common-Name}") {
>
> It's a typo in the default config. I've pushed a fix.
>
> Matthew
Ok thanks all, if (&User-Name == "host/%{TLS-Client-Cert-Common-Name}")
works fine now.
Regards,
Thomas
More information about the Freeradius-Users
mailing list