problem with outer and inner (User-Name).
dg
dg at poczta.tarman.pl
Tue Mar 5 08:50:13 CET 2019
Hello,
can anyone help ?
I have problem with identity.
I am testing it with windows 7 and my cisco switch - ethernet.
when i log in (and using identity ) i have in logs:
Mon Mar 4 18:23:07 2019 : Auth: (36) Login OK: [tom/<via Auth-Type = eap>]
(from client SW1 port 0 via TLS tunnel)
Mon Mar 4 18:23:07 2019 : Auth: (37) Login OK: [whatever/<via Auth-Type =
eap>] (from client SW1 port 50002 cli A1-A2-04-E7-5C-8D)
i know that radius logs what its get from NAS but in this case i have problem
with accounting (its log "whatever" instead of "tom")
i know that to log the inner User-Name, it needs to be copied from the
inner-tunnel to the outer.
in /etc/raddb/sites-enabled/inner-tunnel in post-auth i have
update outer.session-state {
&User-Name := &User-Name
}
i also tried (from FreeRADIUS Begginers's Guide):
if(outer.request:User-Name != request:User-Name)
update reply {
User-Name := "%{request:User-Name}"
}
}
but in logs when i trying to log in i still have:
Mon Mar 4 18:23:07 2019 : Auth: (36) Login OK: [tom/<via Auth-Type = eap>]
(from client SW1 port 0 via TLS tunnel)
Mon Mar 4 18:23:07 2019 : Auth: (37) Login OK: [whatever/<via Auth-Type =
eap>] (from client SW1 port 50002 cli A1-A2-04-E7-5C-8D)
in /etc/raddb/mods-enabled/eap i have "use_tunneled_reply = yes"
what am i doing wrong ? can anyone help ?
i have FreeRADIUS Version 3.0.15
best regards
More information about the Freeradius-Users
mailing list