[RADIATOR] EAP-TTLS authentication problem

Bengi Sağlam bengi at socialandbeyond.com
Fri Dec 12 03:36:47 CST 2014


Hi Heikki,

Using the format '%{OuterRequest:Calling-Station-Id}' has solved my
problem. Thanks for the solution.

Regards,
Bengi.

On Fri, Dec 12, 2014 at 9:17 AM, Heikki Vatiainen <hvn at open.com.au> wrote:

> On 11.12.2014 14.05, Bengi Sağlam wrote:
>
>  However in the log I realised that inner handler missing
>> attribute '%{Calling-Station-Id}' and that is why my user is rejected.
>> When I hard coded my query as "SELECT 'whatever' AS PASSWORD,
>> 'bengi at bengi' AS NAME FROM DEVICES WHERE MAC='04_46_65_66_D6_0D' , my
>> user is being authenticated successfully. So my question is how can I
>> use attributes,which comes from the Access-Request packet, in the inner
>> handler?
>>
>
> Instead of '%{Calling-Station-Id}', which tries to take the attribute from
> the inner request object, try '%{OuterRequest:Calling-Station-Id}'.
>
> Thanks,
> Heikki
>
> --
> Heikki Vatiainen <hvn at open.com.au>
>
>
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
> DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, NetWare
> etc.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.open.com.au/pipermail/radiator/attachments/20141212/17573221/attachment.html 


More information about the radiator mailing list