[radsecproxy] Rewrite not working correctly

Hello, I need to setup a rewrite, that removes the realm when forwarded to the local Radius server. I've already set up a rewrite with the following content: modifyAttribute 1:/^(.*)@mydomain.de$/\1/ My local radius server only accept usernames without the realm. When I include the realm in the server block of the config file nothing is changing. The only way it works is when I include it in the client block. There is a problem when including it in the client block, though: Since the realm is removed so early, radsecproxy thinks that it's a user from another organization and forwards it to the top level radius server. That's not what I want. So I need the following setup: User tries to log in with realm @example.com -> Radsecproxy sees thats it's coming from my organization -> Radsecproxy looks into the server block of my local radius -> Before sending the request to my local radius, it removes the @example.com from the username. Can anyone help me with that setup? I hope my explanation was clear enough. Thank you and greetings from Cologne, Germany. -- Marc Sauer Linux Systems Administrator Kunsthochschule für Medien Köln/ Academy of Media Arts Cologne Peter-Welter-Platz 2 50676 Köln https://www.khm.de https://en.khm.de