RE: Authenticating without a user name

Thu, 20 Jan 2005 10:22:44 -0800 

You are a genius my friend.

George Schoggins
Enterasys Networks
Phone: 407-268-9894
FAX: 407-268-9881
Cell: 407-808-6013 
Email: [EMAIL PROTECTED]
www: http://www.enterasys.com
 
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of
Kenneth Grady
Sent: Thursday, January 20, 2005 12:52 PM
To: [email protected]
Subject: RE: Authenticating without a user name

The "Auth-Type := Accept" is the last part of the DEFAULT line and
doesn't have a comma after it.

On Thu, 2005-01-20 at 10:33, Schoggins, George wrote:
> I put the lines in the users file and it still fails. The mac for the
> second line passes.The users file looks like the following:
> 
> 
> 
> DEFAULT       User-Name =~
"0[0-9a-fA-F]([-:]([0-9a-fA-F][0-9a-fA-F])){5}"
>               Auth-Type := Accept,
>               Filter-Id = "enterasys:version=1:policy=Administrator"
>               
> 00-90-27-54-A2-D4      Auth-Type := Local, User-Password ==
> "NOPASSWORD"
>                        Filter-Id =
> "enterasys:version=1:policy=Administrator"
> 
> 
> 
> 
> I have tried it with Fall-Through =no and yes.
> I have also put the User-Password == "NOPASSWORD" option in after the 
> Auth-Type.  
> 
> The message I am getting is:
> 
> Debug: auth: No authenticate method (Auth-Type) configuration found
for
> the request: Rejecting the user
> Debug: auth: Failed to validate the user.
> Auth: Login incorrect: [00-10-A4-B4-36-77/NOPASSWORD]
>  (from client private-network-1 port 3)
> 
> 
> Is there a way to print out what the USER-NAME it is using with the
> expression match. Thanks for the help.
> 
> George Schoggins
> Enterasys Networks
> Phone: 407-268-9894
> FAX: 407-268-9881
> Cell: 407-808-6013 
> Email: [EMAIL PROTECTED]
> www: http://www.enterasys.com
>  
> -----Original Message-----
> From: [EMAIL PROTECTED]
> [mailto:[EMAIL PROTECTED] On Behalf Of
> Kenneth Grady
> Sent: Thursday, January 20, 2005 10:43 AM
> To: [email protected]
> Subject: Re: Authenticating without a user name
> 
> in the users file
> DEFAULT       User-Name =~
"0[0-9a-fA-F]([-:]([0-9a-fA-F][0-9a-fA-F])){5}",
> Auth-Type := Accept
>       Fall-Through = ...
> 
> will accept all 0x-xx-xx-xx-xx-xx usernames
> 
> 
> 
> On Thu, 2005-01-20 at 08:25, Schoggins, George wrote:
> > I am using the radius to trigger a scanning device to scan for
> > viruses. The mac of the device needs to authenticate and I will
> > execute a script from the authentication. The problem is the user
does
> > not exist in the system. Is there a way to accept the authentication
> > request always.
> > 
> >  
> > 
> > George Schoggins
> > Enterasys Networks
> > Phone: 407-268-9894
> > FAX: 407-268-9881
> > Cell: 407-808-6013 
> > Email: [EMAIL PROTECTED]
> > www: http://www.enterasys.com
> > 
> > 
> >  
> > 
> > 
> 
> 
> - 
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
> 
> 
> 
> - 
> List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html


- 
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html



-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

Reply via email to