Hi Markus,
thanks for the suggestion and patch.
It is now in the latest patch set.
Cheers.
On Thursday 18 November 2010 05:07:13 am Markus Moeller wrote:
> Would it be possible to add additional DEBUG logging to AuthGROUP, so that
> any individual Authby result will be logged ?
>
>
> Thank you
Hi Neil,
thanks for the patch. It has been added to the latest patch set.
Cheers.
On Thursday 18 November 2010 04:02:13 am Johnson, Neil M wrote:
> Yes, but the user being check is "radt...@uiowa.edu"
>
> Since it's AD I only want to check membership for "radtest".
>
> The change I made to the s
Would it be possible to add additional DEBUG logging to AuthGROUP, so that any
individual Authby result will be logged ?
Thank you
Markus
# Try all the authenticators in sequence until the AuthByPolicy
# is satisfied
# CAUTION: The handler might fork
my ($handler, $reason);
Yes, but the user being check is "radt...@uiowa.edu"
Since it's AD I only want to check membership for "radtest".
The change I made to the source seems to fix the problem.
-Neil
--
Neil Johnson
Network Engineer
Information Technology Services
The University of Iowa
319 384-0938
neil-john...@u
Hi Neil,
As you can see, it is actually working, but it says:
User is not a member of any Group: radtest [radt...@uiowa.edu]
So I think that problem is with your group checking.
--
Sami
"Johnson, Neil M" wrote:
>Hmmm, it appears to be in the source code, but doesn't seem to work.
>Someth
I changed the following code in AuthByLSA.pm:
# If this is obviously a host name, strip the host part
# so we can check group membership
if ($username =~ /^host\/([^\.]+)/)
{
$username = "$1\$";
}
# Line Added
$username =~ s/@[...@]*$// if $self->{UsernameMatch
Hmmm, it appears to be in the source code, but doesn't seem to work. Something
to do with group checking ?
-Neil
Wed Nov 17 10:55:20 2010: DEBUG: Handling request with Handler
'TunnelledByPEAP=1', Identifier ''
Wed Nov 17 10:55:20 2010: DEBUG: Deleting session for radt...@uiowa.edu,
128.255.
Would it be possible to add the "UsernameMatchesWithoutRealm" to the "AuthBy
LSA" method ?
-Neil
--
Neil Johnson
Network Engineer
Information Technology Services
The University of Iowa
319 384-0938
neil-john...@uiowa.edu
___
radiator mailing list
We are using Meru.
-Neil
--
Neil Johnson
Network Engineer
Information Technology Services
The University of Iowa
319 384-0938
neil-john...@uiowa.edu
> -Original Message-
> From: Andrew Clark [mailto:a...@umn.edu]
> Sent: Wednesday, November 17, 2010 8:48 AM
> To: Johnson, Neil M
> Cc
Well, I've seen the same thing on Windows boxes with the default
supplicant using a Trapeze wireless system. What have you got for
access points, etc.? I'm also wondering whether this isn't an OpenSSL
issue.
--
Andrew CLark
On Wed, Nov 17, 2010 at 8:41 AM, Johnson, Neil M wrote:
> Andrew,
>
>
Andrew,
Setting that parameter seems to have fixed the issue, Thanks.
I'm using a Windows 7 laptop with the default supplicant.
Granted I'm doing a lot of rapid connecting and disconnecting while testing. I
don't think an end user would be doing what I'm doing.
-Neil
--
Neil Johnson
Network
Try EAPTLS_SessionResumption 0 and see if it works then.
I'm curious what supplicant you're using.
--
Andrew Clark
On Tue, Nov 16, 2010 at 4:20 PM, Johnson, Neil M wrote:
> The first time I start the server I can successfully connect with a client,
> but if I disconnect the client and attempt
Ricardo,
I don't think the AuthBy clauses are checked at all on their own. The
AuthBy's are strictly a configuration, referenced by the Handler's via
"AuthBy (Identifier)". Therefore, the Handler is checked first, and if
the AuthBy's are not referenced in any Handler, they will not be used a
Hello.
I have a basic question about the AuthBy clause. I’m in the process of
understand the configuration file create by another person. So.
If I have clauses before anything else in the configuration
file, this means all the request are going to be authenticated for each one
of this clauses?
14 matches
Mail list logo
