(RADIATOR) AuthenticateAttribute question

Hugh Irvine hugh at open.com.au
Tue Feb 5 16:29:03 CST 2008 

Hello Markus -

It would be most helpful to see a trace 4 debug showing what is  
happening.

regards

Hugh


On 6 Feb 2008, at 08:33, Markus Moeller wrote:

> Hi
>
> I try to change the attribute to authenticate a user/system. I have  
> the following setup where my LDAP connection fills an attribute My- 
> MAC-Address, which then check against file entries. The problem I  
> have is that I still get the User-Name as the compare value not My- 
> MAC-Address.  I did include a PostAuthHook sub { print ${$_[0]}- 
> >get_attr('My-MAC-Address') ; } and it has the correct MAC-Address.
>
> What could be the reason that I still compare the User-Name  
> attribute ?
>
> <AuthBy FILE>
>         Identifier MacFilter
>         AuthenticateAttribute My-MAC-Address
>         Filename %D/macs
> </AuthBy>
>
> <Handler Device-Class=class1>
>         AddToRequestIfNotExist Request-Protocol=Radius
>         AuthByPolicy ContinueUntilReject
>         AuthBy LDAPMACAuthorisation
>         AuthBy MacFilter
>         # Log accounting to the detail file in LogDir
>         AcctLogFileName %L/detail
> </Handler>
> <Handler>
>         AddToRequestIfNotExist Request-Protocol=Radius
>         AuthByPolicy ContinueUntilReject
>         AuthBy LDAPAuthorisation
>         AuthBy UserFilter
>         AuthBy PAMAuthentication
>         AuthLog LogAuthentication
>         # Log accounting to the detail file in LogDir
>         AcctLogFileName %L/detail
> </Handler>
>
> Thank you
> Markus



NB:

Have you read the reference manual ("doc/ref.html")?
Have you searched the mailing list archive (www.open.com.au/archives/ 
radiator)?
Have you had a quick look on Google (www.google.com)?
Have you included a copy of your configuration file (no secrets),
together with a trace 4 debug showing what is happening?
Have you checked the RadiusExpert wiki:
http://www.open.com.au/wiki/index.php/Main_Page

-- 
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. Available on *NIX, *BSD, Windows, MacOS X.
Includes support for reliable RADIUS transport (RadSec),
and DIAMETER translation agent.
-
Nets: internetwork inventory and management - graphical, extensible,
flexible with hardware, software, platform and database independence.
-
CATool: Private Certificate Authority for Unix and Unix-like systems.


--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list