Stefan Kuegler wrote:
> exec multiotp {
> wait = yes
> input_pairs = request
> output_pairs = reply
That says the script output is a series of "Attribute = Value" lines.
> ...and activated this module in the authentication-section of the
> default-configuration (and also in the inner-tunnel-configuration):
>
> authenticate {
> [...]
> Auth-Type MultiOTP {
> update reply {
> Reply-Message = "Hello, %{User-Name}"
> }
> multiotp
> }
Update sections should generally be in post-auth, but... whatever.
> The external script gives me additional informations (like "OK: Token
> accepted", "INFO: Authentication failed" etc.) after authentication.
Which isn't in "Attribute = Value" form, and is therefore ignored.
Yes. Fix the script to send:
Reply-Message := "... text ... "
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
