Discussion:
how to find out the EAP username of the client in the updown script?Hi,
Fejes József
2012-12-24 19:48:18 UTC
Permalink
Hi,

I configured strongSwan according to this documentation:
http://wiki.strongswan.org/projects/strongswan/wiki/Win7EapMultipleConfig

The only thing I changed is that I added a custom updown script which sends
an email for auditing purposes.

In the updown script, how do I find out the username of the connected
client? Eg. "carol" or "dave" according to the example in the wiki.

I dumped the PLUTO* environment variables and I didn't find this username.
Is there another way or can I request this environment variable as a new
feature?

Thanks,
Jozsef
Martin Willi
2012-12-31 10:17:30 UTC
Permalink
Hi József,
Post by Fejes József
In the updown script, how do I find out the username of the connected
client? Eg. "carol" or "dave" according to the example in the wiki.
Such a variable has just been introduced, but is not part yet of any
official release. You can apply [1], 5.0.2 will include the patch.
PLUTO_XAUTH_ID contains the XAUTH identity in IKEv1 and the EAP identity
in IKEv2.

Regards
Martin

[1]http://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=5b89e3b0
Fejes József
2013-01-01 10:18:59 UTC
Permalink
Post by Martin Willi
Hi József,
Post by Fejes József
In the updown script, how do I find out the username of the connected
client? Eg. "carol" or "dave" according to the example in the wiki.
Such a variable has just been introduced, but is not part yet of any
official release. You can apply [1], 5.0.2 will include the patch.
PLUTO_XAUTH_ID contains the XAUTH identity in IKEv1 and the EAP identity
in IKEv2.
Regards
Martin
[1]http://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=5b89e3b0
Hi Martin,

Thank you very much!

I'm using Debian, they are stuck at 4.6.4. It was easy to backport your
patch, there was a minor conflict at the variable declarations, and I had
to remove the COND_XAUTH_AUTHENTICATED test because it didn't compile.
Anyways, it's working perfectly.

Regards,
József

Loading...