[RADIATOR] Proxy'ing Client-Identifier to "slave" RADIUS processes
Heikki Vatiainen
hvn at open.com.au
Mon Jan 28 14:11:44 CST 2013
On 01/28/2013 09:36 PM, Johnson, Neil M wrote:
> It appears that when the Outer handler re-dispatches the request for
> processing by the PEAP and TLS inner Handlers that the
> OSC-Client-Identifier attribute is not also sent.
That's true. Only some attributes are copied automatically. For the rest
you can do something like this in the outer Handler's AuthBy:
PreHandlerHook sub { \
my $tp = ${$_[0]}; \
$tp->add_attr('OSC-Client-Identifier',
$tp->{outerRequest}->get_attr('OSC-Client-Identifier')); \
}
This should copy OSC-Client-Identifier from outer request into tunneled
request.
You should also see it in Trace 4 output which does not show it now, as
you had noticed.
Thanks,
Heikki
--
Heikki Vatiainen <hvn at open.com.au>
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.
More information about the radiator
mailing list