Authenticate only through Username

Alan DeKok aland at deployingradius.com
Mon Feb 20 15:29:47 CET 2017


On Feb 20, 2017, at 7:52 AM, Muhammad Usman <muhd.usman87 at gmail.com> wrote:
> 
> I am using currently using FreeRADIUS to authenticate customers of hotspot.
> But I want FR to authenticate only based on username and ignores the
> password. So if the username exists in radcheck table, it should send
> Accept, even if the password mismatches. How can I do that? Thanks

  For one, be sure that the password in SQL is Cleartext-Password, and not User-Password.

  Then, decide which users need to be authenticated based only on User-Name.

  Then, configure that.  The PAP module is listed in the "authorize" section, and sets 'Auth-Type = PAP', but ONLY if Auth-Type is not already set.

  You can force authentication success by setting 'Auth-Type = Accept'.

  So the solution is simple:

authorize {
	....

	if (User-Name == "testing") {     # as an example
		update control {
			Auth-Type := Accept
		}
	}

	# this should be the last thing in the "authorize" section.
	pap
}

  Alan DeKok.




More information about the Freeradius-Users mailing list