Hello,
We've been working with FreeRadius 0.9.3 and have a configuration question that doesn't seem to be covered by the Hassell's RADIUS book, the docs that come with the distribution or in a google search of the archives. Maybe I just didn't look in the right places, in which case a pointer would be much appreciated.
What we want to do is have users enter their user1 on the client, and then have the FreeRadius server look up username1 and optionally rewrite it into [EMAIL PROTECTED]
The idea is that the local site uses RADIUS and Radius proxying to allow local accounts to be authenticated using a remote authentication service. We are also assuming that the user namespace is _not_ flat, so we need to rewrite the username as well.
The hints file seems to allow some modifications based on prefixes and suffixes, but that doesn't seem to be enough (unless we can force the prefix to match the entire username). It also looks like the users file has some kind of rewrite rules, but I can't find any docs that describe how that works.
Can the rlm_attr_rewrite do this? It doesn't _seem_ to based on the man page, but there is aren't any examples there to look at.
Would it be necessary to write an rlm at plugs in during the authorization phase, and does the username rewrite? If so, can someone point me at a sample rlm_perl config?
Thanks, Steve
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
