Hello,
I need to setup a rewrite, that removes the realm when forwarded to the local Radius server. I've already set up a rewrite with the following content:
modifyAttribute 1:/^(.*)@mydomain.de$/\1/
My local radius server only accept usernames without the realm. When I include the realm in the server block of the config file nothing is changing. The only way it works is when I include it in the client block. There is a problem when including it in the client block, though: Since the realm is removed so early, radsecproxy thinks that it's a user from another organization and forwards it to the top level radius server. That's not what I want.
So I need the following setup:
User tries to log in with realm @example.com -> Radsecproxy sees thats it's coming from my organization -> Radsecproxy looks into the server block of my local radius -> Before sending the request to my local radius, it removes the @example.com from the username.
Can anyone help me with that setup? I hope my explanation was clear enough.
Thank you and greetings from Cologne, Germany.