If I'm not mistaken...I believe freeradius has some rewrite
capablilities that can be used on the User-Name. I remember someone
posting before with issues of trying to get his algorithm correct.
I don't know the sytax, but you get the general idea. You need to use
the attr_rewrite
attr_rewrite add_at {
attribute = User-Name
searchin = packet
searchfor = "^[(a-z0-9)\\000(a-z0-9)]+$"
replacewith = [EMAIL PROTECTED]
ignore_case = yes
new_attribute = no
max_matches = 1
append = no
> Thassanai Mhuansean wrote:
>
> My system:
> FreeBSD 4.8 + freeradius-0.8.1 authentication with mysql .
> Access server is Cisco 3640 series and IOS version 12.2.
>
> My Question:
> I use RAN (Remote Access Network) to Router 3640 by
> username: [EMAIL PROTECTED] and
> password: test555
> when I used authentication on router 3640, it 's OK.
> But when I used radius authentication and into debug mode it shown.
>
>
> rad_recv: Accounting-Request packet from host 203.121.143.20:1646,
> id=114, length=203
> Acct-Session-Id = "00000119"
> Tunnel-Server-Endpoint:0 = "172.21.250.34"
> Tunnel-Client-Endpoint:0 = "172.21.129.6"
> Tunnel-Assignment-Id:0 = "session-id"
> Tunnel-Type:0 = L2TP
> Acct-Tunnel-Connection = "265"
> Tunnel-Client-Auth-Id:0 = "LAC"
> Tunnel-Server-Auth-Id:0 = "session-id"
> Framed-Protocol = PPP
> Acct-Authentic = Local
> Acct-Status-Type = Start
> User-Name = "qwerty123\000isdn.xxx.com"
> Acct-Multi-Session-Id = "000000BA"
> Acct-Link-Count = 2
> Framed-IP-Address = 203.x.x.x
> NAS-Port = 2
> NAS-Port-Type = Virtual
> Service-Type = Framed-User
> NAS-IP-Address = 203.x.x.x
> Acct-Delay-Time = 30
>
> From above. Username field is encrypted from "@" into "\000" then
> Authentication fail!.
> What should I do? Please help me.
>
> Best regards,
> ================================
> Thassanai Mhuansean
> System Engineer Wireless
> GMM GRAMMY PCL.
> Mobile: 661 4850300
> Tel: 662 4850300p2
> E-mail: [EMAIL PROTECTED]
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
