Dear Eric Leblond,
Try
DEFAULT Group-Name == "ADSLParis"
before 'test' definition.
--Friday, August 22, 2003, 4:05:52 PM, you wrote to [EMAIL PROTECTED]:
EL> Hi thanks,
EL> but I did not manage to get it check seems not to be done.
EL> Here's the log :
EL> rad_recv: Access-Request packet from host 212.30.97.74:1085, id=60, length=167
EL> User-Name = "[EMAIL PROTECTED]"
EL> User-Password = "test"
EL> NAS-Identifier = "9massy1-1-SMS-10k"
EL> NAS-IP-Address = 172.20.1.218
EL> Calling-Station-Id = "#9massy1-1-SMS-10k#L2TP pseudo port#1145"
EL> Service-Type = Framed-User
EL> Framed-Protocol = PPP
EL> NAS-Port = 3841983609
EL> Acct-Session-Id = "E5000479-3F462237"
EL> modcall: entering group authorize
EL> modcall[authorize]: module "preprocess" returns ok
EL> rlm_realm: Looking up realm "alphl.telco.ipadsl" for User-Name = "[EMAIL
PROTECTED]"
EL> rlm_realm: Found realm "alphl.telco.ipadsl"
EL> rlm_realm: Adding Stripped-User-Name = "test"
EL> rlm_realm: Proxying request from user test to realm alphl.telco.ipadsl
EL> rlm_realm: Adding Realm = "alphl.telco.ipadsl"
EL> rlm_realm: Authentication realm is LOCAL.
EL> modcall[authorize]: module "suffix" returns noop
EL> rlm_passwd: Added Group-Name: 'ADSLParis' to request_items
EL> modcall[authorize]: module "file_groups" returns ok
EL> users: Matched test at 1
EL> huntgroups: Matched ADSL at 10
EL> modcall[authorize]: module "files" returns ok
EL> rad_check_password: Found Auth-Type Local
EL> auth: type Local
EL> auth: user supplied User-Password matches local User-Password
EL> Sending Access-Accept of id 60 to 212.30.97.74:1085
EL> Framed-IP-Address = 217.15.82.127
EL> Finished request 0
EL> Le ven 22/08/2003 � 13:15, 3APA3A a �crit :
>> Dear Eric Leblond,
>>
>> format = "*Stripped-User-Name:Group-Name"
>>
>> adds Group-Name to configure_items list
>>
>> DEFAULT Huntgroup-Name == "ADSL", Group-Name == "ADSLParis"
>>
>> checks Group-Name to be in request. So you're looking for item in
>> different list. rlm_passwd can add items to reqest_list. To achieve it
>> you can use format
>>
>> format = "*Stripped-User-Name:~Group-Name"
>>
>>
>> --Friday, August 22, 2003, 2:57:23 PM, you wrote to [EMAIL PROTECTED]:
>>
>> EL> On Fri, 2003-08-22 at 12:43, 3APA3A wrote:
>> >> Dear Eric Leblond,
>> >>
>> >> Nothing can be said more without seeing your configuration and logs.
>>
>> EL> here it is :
>>
>> EL> radiusd.conf :
>>
>> EL> passwd file_groups {
>> EL> filename = /etc/raddb/groups
>> EL> format = "*Stripped-User-Name:Group-Name"
>> EL> hashsize = 100
>> EL> delimiter = ":"
>> EL> ignorenislike = no
>> EL> allowmultiplekeys = no
>> EL> }
>>
>>
>> EL> authorize {
>> EL> suffix
>> EL> file_groups
>> EL> files
>> EL> }
>>
>> EL> Users :
>>
>> EL> test Auth-Type :=Local, User-Password == "test"
>>
>> EL> Framed-IP-Address = 217.15.82.127,
>>
>> EL> Fall-Through = Yes
>>
>> EL> DEFAULT Huntgroup-Name == "ADSL", Group-Name == "ADSLParis"
>> EL> Service-Type = Framed-User,
>> EL> Framed-Protocol = PPP,
>> EL> Tunnel-Type = L2TP,
>> EL> Tunnel-Medium-Type = IP,
>> EL> RB-Tunnel-Local-Name = LACLD,
>> EL> Tunnel-Client-Auth-Id = LNSAlphalink,
>> EL> Tunnel-Server-Auth-Id = LNSAlphalink,
>> EL> Tunnel-Server-Endpoint = 217.15.80.33,
>> EL> Tunnel-Assignment-Id = 217.15.80.33
>>
>> EL> logs (radiusd -X) :
>>
>> EL> rad_recv: Access-Request packet from host 212.30.97.74:1085, id=21, length=167
>> EL> User-Name = "[EMAIL PROTECTED]"
>> EL> User-Password = "test"
>> EL> NAS-Identifier = "9massy1-1-SMS-10k"
>> EL> NAS-IP-Address = 172.20.1.218
>> EL> Calling-Station-Id = "#9massy1-1-SMS-10k#L2TP pseudo port#1165"
>> EL> Service-Type = Framed-User
>> EL> Framed-Protocol = PPP
>> EL> NAS-Port = 3841983629
>> EL> Acct-Session-Id = "E500048D-3F461183"
>> EL> modcall: entering group authorize
>> EL> modcall[authorize]: module "preprocess" returns ok
>> EL> rlm_realm: Looking up realm "alphl.telco.ipadsl" for User-Name = "[EMAIL
>> PROTECTED]"
>> EL> rlm_realm: Found realm "alphl.telco.ipadsl"
>> EL> rlm_realm: Adding Stripped-User-Name = "test"
>> EL> rlm_realm: Proxying request from user test to realm alphl.telco.ipadsl
>> EL> rlm_realm: Adding Realm = "alphl.telco.ipadsl"
>> EL> rlm_realm: Authentication realm is LOCAL.
>> EL> modcall[authorize]: module "suffix" returns noop
>> EL> rlm_passwd: Added Group-Name: 'ADSLParis' to config_items
>> EL> modcall[authorize]: module "file_groups" returns ok
>> EL> users: Matched test at 1
>> EL> huntgroups: Matched ADSL at 10
>> EL> modcall[authorize]: module "files" returns ok
>> EL> modcall: group authorize returns ok
>> EL> rad_check_password: Found Auth-Type Local
>> EL> auth: type Local
>> EL> auth: user supplied User-Password matches local User-Password
>> EL> Sending Access-Accept of id 21 to 212.30.97.74:1085
>> EL> Framed-IP-Address = 217.15.82.127
>>
>> EL> So Group-Name is set but the test seems not to work ....
>>
>> EL> BR,
>>
>> >> --Friday, August 22, 2003, 12:48:42 AM, you wrote to [EMAIL PROTECTED]:
>> >>
>> >> EL> Le jeu 21/08/2003 � 21:05, 3APA3A a écrit :
>> >> >> Dear Eric Leblond,
>> >> >>
>> >> >> Probably you call passwd after file module. Make sure passwd is called
>> >> >> prior to file module to assume you can use results of rlm_passwd in
>> >> >> users file.
>> >>
>> >> EL> I did not miss that point (at least this one) I've put passwd file
>> >> EL> before users in radiusd.conf. Logs show that the var is defined.
>> >>
>> >> EL> BR,
--
~/ZARAZA
������ ���. � ���� � ����� ������� ������ �����-������
�����, ��, �� ���������, ���������� � ��� ����. (����)
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
