SV: SV: SV: EXEC Access-challenge

[Thomas Raabo - Zitcom A/S]

Ignore My stupidity.

I figured it out...

I'll make a wiki and make my script public

Med venlig hilsen | Best regards
Thomas Raabo
Senior Network Engineer CCIE #33466



_____________________________________________
t...@zitcom.dk | Direkte: +45 69 10 60 18 | Tlf.: +45 70 23 55 66


-----Oprindelig meddelelse-----
Fra: freeradius-users-bounces+tr=zitcom...@lists.freeradius.org 
[mailto:freeradius-users-bounces+tr=zitcom...@lists.freeradius.org] På vegne af 
Thomas Raabo - Zitcom A/S
Sendt: 11. oktober 2012 14:48
Til: FreeRadius users mailing list
Emne: SV: SV: SV: EXEC Access-challenge

Thanks phil...

I´am close now.

The only thing missing to getting this workin is getting the state number to 
the script.

On the second run after the challenge I don't get the state number passed..

++[logintime] returns noop
[pap] Normalizing SHA-Password from hex encoding [pap] WARNING: Auth-Type 
already set.  Not setting to PAP
++[pap] returns noop
[ZOTP]  expand: %{User-Name} -> test2
[ZOTP]  expand: %{User-Password} -> test2 [ZOTP]  expand: %{reply:Secret} -> 
891a79d80c9f1cd2 [ZOTP]  expand: %{reply:Pin} -> 0201 [ZOTP]  expand: 
%{reply:Offset} -> 1 [ZOTP]  expand: %{reply:State} -> Exec-Program output: 
Reply-Message += "Enter OTP", State += "12160",
Exec-Program-Wait: value-pairs: Reply-Message += "Enter OTP", State += "12160",
Exec-Program: returned: 9
++[ZOTP] returns updated
++? if (updated)
? Evaluating (updated) -> TRUE
++? if (updated) -> TRUE
++- entering if (updated) {...}
+++[control] returns updated
+++[handled] returns handled
++- if (updated) returns handled
Sending Access-Challenge of id 73 to 172.31.2.20 port 40108
        Reply-Message += "Enter OTP"
        State += 0x3132313630

Should I not be able to get it out with reply:State in the exec?


Med venlig hilsen | Best regards
Thomas Raabo
Senior Network Engineer CCIE #33466



_____________________________________________
t...@zitcom.dk | Direkte: +45 69 10 60 18 | Tlf.: +45 70 23 55 66


-----Oprindelig meddelelse-----
Fra: freeradius-users-bounces+tr=zitcom...@lists.freeradius.org 
[mailto:freeradius-users-bounces+tr=zitcom...@lists.freeradius.org] På vegne af 
Phil Mayers
Sendt: 11. oktober 2012 13:30
Til: freeradius-users@lists.freeradius.org
Emne: Re: SV: SV: EXEC Access-challenge

On 11/10/12 11:53, Thomas Raabo - Zitcom A/S wrote:
> How do you change the order it phil?

You type things in the right order.

As per my original email, do this:

authorize {
  ...
  YOUR_EXEC_MODULE
  if (updated) {
    ...
  }
  ...
}
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html