Hi thanks,
but I did not manage to get it check seems not to be done.
Here's the log :
rad_recv: Access-Request packet from host 212.30.97.74:1085, id=60, length=167
User-Name = "[EMAIL PROTECTED]"
User-Password = "test"
NAS-Identifier = "9massy1-1-SMS-10k"
NAS-IP-Address = 172.20.1.218
Calling-Station-Id = "#9massy1-1-SMS-10k#L2TP pseudo port#1145"
Service-Type = Framed-User
Framed-Protocol = PPP
NAS-Port = 3841983609
Acct-Session-Id = "E5000479-3F462237"
modcall: entering group authorize
modcall[authorize]: module "preprocess" returns ok
rlm_realm: Looking up realm "alphl.telco.ipadsl" for User-Name = "[EMAIL
PROTECTED]"
rlm_realm: Found realm "alphl.telco.ipadsl"
rlm_realm: Adding Stripped-User-Name = "test"
rlm_realm: Proxying request from user test to realm alphl.telco.ipadsl
rlm_realm: Adding Realm = "alphl.telco.ipadsl"
rlm_realm: Authentication realm is LOCAL.
modcall[authorize]: module "suffix" returns noop
rlm_passwd: Added Group-Name: 'ADSLParis' to request_items
modcall[authorize]: module "file_groups" returns ok
users: Matched test at 1
huntgroups: Matched ADSL at 10
modcall[authorize]: module "files" returns ok
rad_check_password: Found Auth-Type Local
auth: type Local
auth: user supplied User-Password matches local User-Password
Sending Access-Accept of id 60 to 212.30.97.74:1085
Framed-IP-Address = 217.15.82.127
Finished request 0
Le ven 22/08/2003 � 13:15, 3APA3A a �crit :
> Dear Eric Leblond,
>
> format = "*Stripped-User-Name:Group-Name"
>
> adds Group-Name to configure_items list
>
> DEFAULT Huntgroup-Name == "ADSL", Group-Name == "ADSLParis"
>
> checks Group-Name to be in request. So you're looking for item in
> different list. rlm_passwd can add items to reqest_list. To achieve it
> you can use format
>
> format = "*Stripped-User-Name:~Group-Name"
>
>
> --Friday, August 22, 2003, 2:57:23 PM, you wrote to [EMAIL PROTECTED]:
>
> EL> On Fri, 2003-08-22 at 12:43, 3APA3A wrote:
> >> Dear Eric Leblond,
> >>
> >> Nothing can be said more without seeing your configuration and logs.
>
> EL> here it is :
>
> EL> radiusd.conf :
>
> EL> passwd file_groups {
> EL> filename = /etc/raddb/groups
> EL> format = "*Stripped-User-Name:Group-Name"
> EL> hashsize = 100
> EL> delimiter = ":"
> EL> ignorenislike = no
> EL> allowmultiplekeys = no
> EL> }
>
>
> EL> authorize {
> EL> suffix
> EL> file_groups
> EL> files
> EL> }
>
> EL> Users :
>
> EL> test Auth-Type :=Local, User-Password == "test"
>
> EL> Framed-IP-Address = 217.15.82.127,
>
> EL> Fall-Through = Yes
>
> EL> DEFAULT Huntgroup-Name == "ADSL", Group-Name == "ADSLParis"
> EL> Service-Type = Framed-User,
> EL> Framed-Protocol = PPP,
> EL> Tunnel-Type = L2TP,
> EL> Tunnel-Medium-Type = IP,
> EL> RB-Tunnel-Local-Name = LACLD,
> EL> Tunnel-Client-Auth-Id = LNSAlphalink,
> EL> Tunnel-Server-Auth-Id = LNSAlphalink,
> EL> Tunnel-Server-Endpoint = 217.15.80.33,
> EL> Tunnel-Assignment-Id = 217.15.80.33
>
> EL> logs (radiusd -X) :
>
> EL> rad_recv: Access-Request packet from host 212.30.97.74:1085, id=21, length=167
> EL> User-Name = "[EMAIL PROTECTED]"
> EL> User-Password = "test"
> EL> NAS-Identifier = "9massy1-1-SMS-10k"
> EL> NAS-IP-Address = 172.20.1.218
> EL> Calling-Station-Id = "#9massy1-1-SMS-10k#L2TP pseudo port#1165"
> EL> Service-Type = Framed-User
> EL> Framed-Protocol = PPP
> EL> NAS-Port = 3841983629
> EL> Acct-Session-Id = "E500048D-3F461183"
> EL> modcall: entering group authorize
> EL> modcall[authorize]: module "preprocess" returns ok
> EL> rlm_realm: Looking up realm "alphl.telco.ipadsl" for User-Name = "[EMAIL
> PROTECTED]"
> EL> rlm_realm: Found realm "alphl.telco.ipadsl"
> EL> rlm_realm: Adding Stripped-User-Name = "test"
> EL> rlm_realm: Proxying request from user test to realm alphl.telco.ipadsl
> EL> rlm_realm: Adding Realm = "alphl.telco.ipadsl"
> EL> rlm_realm: Authentication realm is LOCAL.
> EL> modcall[authorize]: module "suffix" returns noop
> EL> rlm_passwd: Added Group-Name: 'ADSLParis' to config_items
> EL> modcall[authorize]: module "file_groups" returns ok
> EL> users: Matched test at 1
> EL> huntgroups: Matched ADSL at 10
> EL> modcall[authorize]: module "files" returns ok
> EL> modcall: group authorize returns ok
> EL> rad_check_password: Found Auth-Type Local
> EL> auth: type Local
> EL> auth: user supplied User-Password matches local User-Password
> EL> Sending Access-Accept of id 21 to 212.30.97.74:1085
> EL> Framed-IP-Address = 217.15.82.127
>
> EL> So Group-Name is set but the test seems not to work ....
>
> EL> BR,
>
> >> --Friday, August 22, 2003, 12:48:42 AM, you wrote to [EMAIL PROTECTED]:
> >>
> >> EL> Le jeu 21/08/2003 � 21:05, 3APA3A a écrit :
> >> >> Dear Eric Leblond,
> >> >>
> >> >> Probably you call passwd after file module. Make sure passwd is called
> >> >> prior to file module to assume you can use results of rlm_passwd in
> >> >> users file.
> >>
> >> EL> I did not miss that point (at least this one) I've put passwd file
> >> EL> before users in radiusd.conf. Logs show that the var is defined.
> >>
> >> EL> BR,
--
Eric Leblond <[EMAIL PROTECTED]>
Init-Sys
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
