Rok Papez <[EMAIL PROTECTED]> wrote:
> I'm trying to proxy requests to LOCAL, but the realm part of the username
> isn't stripped.
The server doesn't proxy requests to LOCAL. It just handles them itself.
> modules {
> realm example.domain {
> format = suffix
> delimeter = "@"
> }
The "suffix" realm will do this. You don't need another one.
> realm example.domain {
> type = radius
> authhost = LOCAL
> accthost = LOCAL
> }
> # nostrip isn't used.. shouldn't this
> # strip the domain part ?
The name is stripped by default.
> TTLS: Sending tunneled request
> User-Name = "[EMAIL PROTECTED]"
> User-Password = "blah"
> FreeRADIUS-Proxied-To = 127.0.0.1
>
> And here is the problem. This should be the
> "userxy" and not the "[EMAIL PROTECTED]".
No. The data in the TTLS tunnel is EXACTLY what it's printing out.
The stripping (if any) of the user name happens when the tunneled
request is passed through the normal authorization/authentication
process.
> I have an odd feeling that request isn't proxied :-/.
Because it isn't being proxied, and isn't supposed to be proxied.
I think you're confused as to what proxying means.
> What am I doing wrong ? I read thru the docs and man pages but
> can't find the solution, could someone please point me in the right
> direction ?
I don't know what you want it to do, so I can't say what's going
"wrong".
From what I can see, it's doing exactly what it's supposed to do.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
