Hello,
I have changed it to using a suffix instead eg:
[EMAIL PROTECTED], I added this to the hints file.
DEFAULT Suffix = ".xdsl", Strip-User-Name = Yes
NAS-Port-Type = xDSL
Only problem is the suffix is not being stripped, only the realm is
being removed. Anyone know how I can fix this?
----- OUTPUT -----
Thread 1 handling request 0, (1 handled so far)
User-Name = "[EMAIL PROTECTED]"
User-Password = "\333\330\331\017K\343`(B^\252\264\375\374[\225"
NAS-IP-Address = 255.255.255.255
NAS-Port-Id = "1"
rad_lowerpair: User-Name now '[EMAIL PROTECTED]'
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm xxxx.xxx.xx for User-Name =
"[EMAIL PROTECTED]"
rlm_realm: Found realm xxxx.xxx.xx
rlm_realm: Adding Stripped-User-Name = "bbuilder.xdsl"
rlm_realm: Proxying request from user bbuilder.xdsl to realm
xxxxx.xxx.xx
rlm_realm: Adding Realm = "xxxx.xxx.xx"
rlm_realm: Authentication realm is LOCAL.
rlm_realm: auth_port is not set. proxy cancelled
modcall[authorize]: module "suffix" returns noop
users: Matched DEFAULT at 1
modcall[authorize]: module "files" returns ok
modcall: entering group redundant
rlm_ldap: - authorize
rlm_ldap: performing user authorization for bbuilder.xdsl
radius_xlat: '(uid=bbuilder.xdsl)'
radius_xlat: 'ou=Internet Service Provider,dc=xxx,dc=xxx,dc=xx'
ldap_get_conn: Got Id: 0
rlm_ldap: attempting LDAP reconnection
rlm_ldap: (re)connect to ldap.xxxx.xxx.xx:389, authentication 0
rlm_ldap: setting TLS mode to 4
rlm_ldap: could not set LDAP_OPT_X_TLS option Success
rlm_ldap: bind as / to ldap.xxxx.xxx.xx:389
rlm_ldap: waiting for bind result ...
rlm_ldap: performing search in ou=Internet Service
Provider,dc=xxx,dc=xxx,dc=xx, with filter (uid=bbuilder.xdsl)
rlm_ldap: object not found or got ambiguous search result
rlm_ldap: search failed
ldap_release_conn: Release Id: 0
modcall[authorize]: module "ldap1" returns notfound
modcall: group redundant returns notfound
modcall: group authorize returns notfound
rad_check_password: Found Auth-Type Pam
auth: type "PAM"
modcall: entering group authenticate
pam_pass: using pamauth string <radiusd> for pam.conf lookup
pam_pass: function pam_authenticate FAILED for <bbuilder.xdsl>. Reason:
User not known to the underlying authentication module
modcall[authenticate]: module "pam" returns reject
modcall: group authenticate returns reject
auth: Failed to validate the user.
Login incorrect (rlm_ldap: User not found):
[[EMAIL PROTECTED]/xxxxxxxx] (from client localhost port 0)
Delaying request 0 for 1 seconds
Finished request 0
Going to the next request
Thread 1 waiting to be assigned a request
rad_recv: Access-Request packet from host 127.0.0.1:34499, id=143,
length=75
Sending Access-Reject of id 143 to 127.0.0.1:34499
Ascend-Client-Assign-DNS = DNS-Assign-Yes
Ascend-Client-Primary-DNS = xxx
Ascend-Client-Secondary-DNS = xxx
Ascend-Assign-IP-Pool = 6
Ascend-Maximum-Channels = 1
Allister P Maguire
Development Consultant
Actonz Management Group Ltd
PH: +64 4 915 7711
Attention:
This e-mail message is privileged and confidential. If you are not the
intended recipient please delete the message and notify the sender.
Any views or opinions presented are solely those of the author.
Actonz Management Group Ltd PH: +64 4 9157700 FX: +64 4 9157730
http://www.actonz.com
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
