Re: stripped-user-name woes

[Vector]

Thankx much for the reply.  Maybe I'm going about this all wrong.  I would just like 'user' to work as well as '[EMAIL PROTECTED]'   After working on this for a while, it looked like realms might be the answer but that didn't quite take care of it.  If I put '[EMAIL PROTECTED]' in the db then 'user' will no longer work, right?   There are going to be lots of realms and I would like to make this generic if possible so that I don't need a separate hint to be able to strip the realm.  It looked like the best way to implement this would be with a different group for each realm and then populate realmgroup in the database.  As far as I can tell though, the rlm_sql module doesn't actually use either of the realm tables (yet??).   Just looking for some guidence as to the 'best' way to do this so I don't have a hacked up config of radius.  Thnx again for the reply.   vec   ----- Original Message ----- From: Joe Maimon To: [EMAIL PROTECTED] Sent: Tuesday, February 26, 2002 5:27 AM Subject: Re: stripped-user-name woes If you setup a hint for example: DEFAULT Suffix = "@somedomain.com"", Strip-User-Name = Yes         Hint = SMDM Then there will be a stripped user name   And if in your sql.conf you say here:           # ^^^ --That doesn't work because someone screwed up decode_attribute()         sql_user_name = "%{Stripped-User-Name}";         #sql_user_name = "%{User-Name}" Then it should work. Or you can match up against the full username, putting [EMAIL PROTECTED] in the radcheck database. Or you could change the sql queries in sql.conf to tune for behavior you find more apropriate. I have tried (briefly) to get radcheck to work against Hints to, but  I gave up rather quickly.   Vector wrote: I posted a whole message about this on Friday or Saturday and had no response, after running radiusd/rlm_sql module through gdb and seeing what it actually does, it's starting to make some sense.  I'm using freeradius latest CVS snapshot with MySQL..  Forgive my ignorance.  I'm a veteran programmer but new to radius. I have a single entry in radcheck: id = 1, UserName = testuser, Attribute = Password, Value = testpass, op = <blank> All other tables empty.  Justing testuser everything is fine.  Using [EMAIL PROTECTED] fails.  Must there be a realm for stripped-user-name to work properly?  I would have thought it would strip everything after and including the @ symbol even without a realm.  Thanks, vec - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html