Skip policy check if there is no outer request
Adam Bishop
Adam.Bishop at jisc.ac.uk
Wed Nov 16 19:57:25 CET 2016
I'm using the 'filter_inner_identity' policy to check if a user is trying to do nasty things with their outer/inner id's.
However, it has the side effect of preventing me from doing such things.
I can whitelist the NAI easily enough, but for this situation I can rely on there not being an outer request (I'm poking the inner-tunnel port directly with radclient).
Can I test for the existence of an outer request using unlang?
Regards,
Adam Bishop
gpg: E75B 1F92 6407 DFDF 9F1C BF10 C993 2504 6609 D460
jisc.ac.uk
Jisc is a registered charity (number 1149740) and a company limited by guarantee which is registered in England under Company No. 5747339, VAT No. GB 197 0632 86. Jisc’s registered office is: One Castlepark, Tower Hill, Bristol, BS2 0JA. T 0203 697 5800.
Jisc Services Limited is a wholly owned Jisc subsidiary and a company limited by guarantee which is registered in England under company number 2881024, VAT number GB 197 0632 86. The registered office is: One Castle Park, Tower Hill, Bristol BS2 0JA. T 0203 697 5800.
More information about the Freeradius-Users
mailing list