Issues with Cached-Session-Policy in versions of FR after 3.0.8.
Palmer J.D.F.
j.d.f.palmer at swansea.ac.uk
Tue Jan 12 17:23:45 CET 2016
Hello,
I've issues with fast-reauth using Cached-Session-Policy in FR3.0.9 and above.
In the post-auth section of site-enabled/inner-tunnel I update the reply as below...
post-auth {
...
update reply {
&Cached-Session-Policy = &Stripped-User-Name
}
...
}
I then have the code below in site-enabled/default to recover the username from the stored Cached-Session-Policy for use on a fast-reauth, this is then used to run a few scripts to check the user's status and assign VLAN.
post-auth {
...
if ("%{Realm}" != "jrs") { #don't need to do this for JRS users
update control {
&Tmp-String-1 := &reply:Cached-Session-Policy
}
$INCLUDE ${raddbdir}/scripts/dosomestuff.conf
$INCLUDE ${raddbdir}/scripts/poolacc.conf
}
...
}
This works in V3.0.8, Tmp-String-1 is set to the stripped username from the saved session, but not in versions after this.
Is there a better/another way to recover the username for use within site-enabled/default during fast re-auth / session resumption?
Many thanks,
Jezz.
Jezz Palmer
Information Services and Systems
Swansea University
Singleton Park
Swansea
SA2 8PP
More information about the Freeradius-Users
mailing list