Support Ntdomain and Suffix For Ad authentication
Alan DeKok
aland at deployingradius.com
Mon Mar 13 14:28:38 CET 2017
On Mar 11, 2017, at 11:29 AM, Arnab Roy <arnabroy at mail.com> wrote:
>
> I am just trying to see if its possible to get usernames of both
> formats to authenticate on FR. Based on the howto
> here http://wiki.freeradius.org/guide/freeradius-active-directory-integ
> ration-howto
>
> It seems to be either or in the mschap module. I tried a few
> combination like so in the username expansion
>
> --username=%{%{mschap:User-Name}:-00} --> Domain\username works , but username at d
> omain breaks because we are not passing the Stripped username
So... edit it to pass the Stripped-User-Name.
> --username=%{%{Stripped-User-Name}:-%{%{User-Name}:-None}} user at domain works but
> domain\user breaks.
Because you edited it to remove %{mschap:User-Name}.
> Any way I can combine the above to expansions and support both username
> formats ..
See "man unlang". Specifically the few paragraphs following: %{%{Foo}:‐bar}
This *is* documented.
Alan DeKok.
More information about the Freeradius-Users
mailing list