(RADIATOR) EAP inner identity hook

Andrew D. Clark adc at umn.edu
Thu May 22 13:48:39 CDT 2008

I'm getting user sessions and accounting information showing the EAP anonymous 
identity from my NAS when using EAP-PEAP.  My vendor suggested sending the 
inner username (the "real" one) in the access-accept.  I tried using the 
contributed hook 'eap_acct_username.pl' without success.  I modified the hook 
slightly to copy the inner username to the access-accept message, but 
might've done so in a bad way (it works, but is it correct?)

sub {
        my ($req, $rep, $handled, $reason) = @_;

        if (${$rep}->code() eq 'Access-Accept' ) {

   		my $inner_identity = ${$req}->{rp}{inner_identity};

        	 ${$rep}->changeUserName($inner_identity) if defined $inner_identity;

Is there a defined method for grabbing the inner_identity other than ripping 
it out of the guts of the poor request object?

Andrew D. Clark
Network Operations Engineer 	
University of Minnesota, Networking/Telecom Services 	
2218 University Ave SE
Minneapolis, MN 55414-3029      
Phone: 612-626-4880

Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.

More information about the radiator mailing list