match replay log with the request and log rejected request
Peter Hudec
peter at home.hudecof.net
Wed Mar 19 08:00:34 UTC 2025
Thanks ;)
Is there any reason why to use Copy-Of-User-Name intead of user-Name attribut?
regards
Peter
> On 19 Mar 2025, at 08:58, Alan DeKok <aland at deployingradius.com> wrote:
>
> On Mar 19, 2025, at 2:47 PM, Peter Hudec via Freeradius-Users <freeradius-users at lists.freeradius.org> wrote:
>> As there is no username or some knd of session id in the reoply, the default reply_log configuration just logs the reply attributes.
>> In this scenario I'm not able to pair it with the original request ;(
>
> The lazy way is that you can just add an attribute to the reply. Edit raddb/dictionary to add a string attribute like "Copy-Of-User-Name". Then, do:
>
> update reply {
> &Copy-Of-User-Name := &User-Name
> }
> reply_log
>
> And that will include the User-Name from the request.
>
>> By default, the Rejected request are not logged, what should be changed to add logging for them?
>
> Edit the "Post-Auth-Type Reject" section, and add logging there.
>
> Alan DeKok.
>
More information about the Freeradius-Users
mailing list