proxy request ok, but incomplete access-accept to my Aruba
Ramon Escriba
escriba at cells.es
Fri Oct 13 15:10:49 CEST 2017
Dear Alan,
The problem are not the fields, but where I shall insert them in the current "proxy" related config.
Right now, in "users" file I've this DEFAULT that works fine for my local @my-realm.com, but not for external "@ACME.COM",
The proxy returns ok, but without fields for Aruba.
DEFAULT
Aruba-User-Vlan = <vlaind number>,
Aruba-User-Role = "authenticated",
(....)
Termination-Action = 1,
Reply-Message = "WELCOME TO @ MY-REALM.COM",
Session-Timeout = 3600,
Tunnel-Type = VLAN,
Tunnel-Medium-Type = IEEE-802
Any clue about?
Kindest Regards.
-----Original Message-----
From: Freeradius-Users [mailto:freeradius-users-bounces+escriba=cells.es at lists.freeradius.org] On Behalf Of Alan DeKok
Sent: viernes, 13 de octubre de 2017 13:21
To: FreeRadius users mailing list
Subject: Re: proxy request ok, but incomplete access-accept to my Aruba
On Oct 13, 2017, at 6:17 AM, Ramon Escriba <escriba at cells.es> wrote:
> It works perfect with my @my-realm.com, but when I send test realms to
> the external proxy, it accepts the query (see below logs),
That's good.
> but seems the Access-Accept packet does not complete the fields my
> Aruba needs to open the vlan, as I do in @my-realm.com with users file.
That's not good.
> How can I complete the "Access-Accept" packet I send to my Aruba?
Read the Aruba documentation to see what attributes it needs.
Then, configure FreeRADIUS to send those attributes.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list