(i re-submit this because a previous submission sent before
subscriptions
went in some sink i dont know about)
username associated with lease from isc dhcp server
(possible for 802.1x authenticated clients)
It would be very useful to be able to query dhcp servers for
the radius attributes the switches add to client dhcp requests
(according to rfc4014) when the clients were authenticated by 802.1x.
I made a very small patch that i did'nt test much.
This patch allows isc dhcp server to store the radius attributes that it
eventually receives in the lease and therefore replies to
dhcp leasquery packets or small python scripts using omapi with
for instance the radius User-Name obtained from the NAS.
I enclose the untested patch here. It is also available
at
http://people.sissa.it/~inno/pubs/diff-Naur-radattr-std.txtI know now the development is mainly on kea, but ..
let me know if someone finds it useful.
eg . small python script using pypureomapi queries dhcp server and gets
back
username(get-ip-l : get-ip-lease trough omapi)
$PYPUREOMAPI/get-ip-l 169.254.1.183
ip 169.254.1.182 mac 00:12:22:33:77:89 User-Name = kitten
I took the simplest road to store all radius attributes in one hex
option as in this example lease, it remains under the responsability of
the
clients to decode them :
lease 169.254.1.183 {
starts 4 2015/05/28 06:04:23;
ends 4 2015/05/28 06:09:23;
cltt 4 2015/05/28 06:04:23;
binding state active;
next binding state free;
rewind binding state free;
hardware ethernet 00:12:22:33:77:89;
option agent.circuit-id "cir 123";
option agent.radius-attributes 1:8:6b:69:74:74:65:6e;
}
write to me for the simple python script querying for usernames.
--
Roberto Innocente - SISSA
[hidden email] - +39 40 3787541
_______________________________________________
dhcp-users mailing list
[hidden email]
https://lists.isc.org/mailman/listinfo/dhcp-users