At 12:59 PM 1/28/2003 -0800, Nathan Miller wrote:
Here's what I am trying to get freeradius-0.8.1 to do:1. Request comes in looking like: FREDSISP#[EMAIL PROTECTED] 2. if exist (prefix), strip suffix and proxy 3. if not exist (prefix), proxy via suffix 4. if no match for suffix in proxy.conf, auth locally
[ snip ]
Now the debug (-x -x -x) data:Don't include a NULL entry in your proxy.conf and it will then failover
Tue Jan 28 12:16:03 2003 : Debug: modcall: entering group authorize
Tue Jan 28 12:16:03 2003 : Debug: modcall[authorize]: module "preprocess" returns ok
Tue Jan 28 12:16:03 2003 : Debug: rlm_realm: No '#' in User-Name = "[EMAIL PROTECTED]", looking up realm NULL
Tue Jan 28 12:16:03 2003 : Debug: rlm_realm: Found realm NULL
Tue Jan 28 12:16:03 2003 : Debug: rlm_realm: Adding Stripped-User-Name = "[EMAIL PROTECTED]"
Tue Jan 28 12:16:03 2003 : Debug: rlm_realm: Proxying request from user [EMAIL PROTECTED] to realm NULL
Tue Jan 28 12:16:03 2003 : Debug: rlm_realm: Adding Realm = "NULL"
Tue Jan 28 12:16:03 2003 : Debug: rlm_realm: Authentication realm is LOCAL.
Maybe I'm missing something.. but I've gone over it too many times. =o To me it looks like when it doesn't match "prefix" realm, it automatically looks for NULL instead of moving to the next step in authorize{} which should be to look for the "suffix" realm.
to the next 'rlm_realm' module.
-Chris
--
\\\|||/// \ StarNet Inc. \ Chris Parker
\ ~ ~ / \ WX *is* Wireless! \ Director, Engineering
| @ @ | \ http://www.starnetwx.net \ (847) 963-0116
oOo---(_)---oOo--\------------------------------------------------------
\ Wholesale Internet Services - http://www.megapop.net
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
