I seem to have found that when you set an attribute in the users file, the new attribute-value is not used for further checking in the users file.
Is this by design?
Thanks. Joe
I tested with this:
excerpt from users (lines 37x-37y):
DEFAULT Hint := "NOSUCHHINT"
Fall-Through = YesDEFAULT Hint !* "", Auth-Type := "Reject"
Reply-Message := "No such Realm",
Fall-Through = NoThis was the output:
Cleaning up request 0 ID 147 with timestamp 3fca18de
Nothing to do. Sleeping until we see a request.
rad_recv: Access-Request packet from host 127.0.0.1:36087, id=156, length=72
User-Name = "[EMAIL PROTECTED]"
User-Password = "test"
NAS-IP-Address = 255.255.255.255
NAS-Port = 1
modcall: entering group authorize for request 1
modcall[authorize]: module "preprocess" returns ok for request 1
modcall[authorize]: module "chap" returns noop for request 1
modcall[authorize]: module "attr_filter" returns noop for request 1
modcall[authorize]: module "eap" returns noop for request 1
rlm_realm: Looking up realm "nosuchrealm.com" for User-Name = "[EMAIL PROTECTED]"
rlm_realm: No such realm "nosuchrealm.com"
modcall[authorize]: module "suffix" returns noop for request 1
radius_xlat: '[EMAIL PROTECTED]'
rlm_sql (sql): sql_set_user escaped user --> '[EMAIL PROTECTED]'
radius_xlat: 'SELECT id,UserName,Attribute,Value,op FROM radcheck WHERE Username = '[EMAIL PROTECTED]' ORDER BY id'
rlm_sql (sql): Reserving sql socket id: 7
rlm_sql (sql): User [EMAIL PROTECTED] not found in radcheck
radius_xlat: 'SELECT radgroupcheck.id,radgroupcheck.GroupName,radgroupcheck.Attribute,radgroupcheck.Value,radgroupcheck.op F
ROM radgroupcheck,usergroup WHERE usergroup.Username = '[EMAIL PROTECTED]' AND usergroup.GroupName = radgroupcheck.GroupNam
e ORDER BY radgroupcheck.id'
radius_xlat: 'SELECT radgroupreply.id,radgroupreply.GroupName,radgroupreply.Attribute,radgroupreply.Value,radgroupreply.op F
ROM radgroupreply,usergroup WHERE usergroup.Username = '[EMAIL PROTECTED]' AND usergroup.GroupName = radgroupreply.GroupNam
e ORDER BY radgroupreply.id'
rlm_sql (sql): User [EMAIL PROTECTED] not found in radgroupcheck
rlm_sql (sql): User not found
rlm_sql (sql): Released sql socket id: 7
modcall[authorize]: module "sql" returns notfound for request 1
users: Matched DEFAULT at 373
users: Matched DEFAULT at 376
modcall[authorize]: module "files" returns ok for request 1
modcall[authorize]: module "mschap" returns noop for request 1
modcall: group authorize returns ok for request 1
rad_check_password: Found Auth-Type Reject
rad_check_password: Auth-Type = Reject, rejecting user
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
