Juniper-Local-User-Name reply attribute
Alan DeKok
aland at deployingradius.com
Thu Oct 27 21:21:11 CEST 2016
On Oct 27, 2016, at 3:13 PM, Dave Aldwinckle <daldwinc at uwaterloo.ca> wrote:
> If I change the unlang to the following, the Juniper-Local-User-Name does not appear in the Access-Accept. The rest of the debug output for entering the if statement looks identical.
>
> if (&myAttribute == "srx") {
> update reply {
> Juniper-Local-User-Name := "limited"
> Service-Type := Login-User
> }
> }
>
> I have confirmed that the proper dictionary exists on the server:
Ok...
> Any ideas?
What does the full debug output say? We can make guesses from zero information. Which is why we always ask for the debug output.
> Unfortunately, I can't trick my Juniper SRX device into accepting Cisco-AVPair attributes.
That's by design. Vendor-specific attributes are specific to each vendor.
Alan DeKok.
More information about the Freeradius-Users
mailing list