EAP-TLS extend logged lines
Alan DeKok
aland at deployingradius.com
Wed Feb 19 16:18:14 UTC 2025
On Feb 19, 2025, at 11:11 AM, Alexey D. Filimonov <alexey at filimonic.net> wrote:
> Currently I have EAP-TLS auth.
> On successfull auth, it logs
>
> ```
> Wed Feb 19 15:23:13 2025 : Auth: (9) Login OK: [anonymous-xxx] (from client name_of_client1 port 8 cli ee:ee:ee:ed:ae:ee)
> ```
>
>
> I'd like to extend or replace this line with UPN from certiificate and other attributes.
>
> Where should I start from ?
Edit radiusd.conf to edit the message. Look for msg_goodpass. You can edit to add any TLS certificate information you want.
You can run the server in debug mode to see which TLS attributes are available, and what their names are.
Alan DeKok.
More information about the Freeradius-Users
mailing list