--- /dev/null
+#
+# The following policies are for the Operator-Name
+# configuration.
+#
+# The policies below can be called as just 'oprator-name' (not
+# oprator-name.authorize etc..) from the various config sections.
+#
+
+#
+# We assume that clients can have the operator-name definition
+# in the client.conf, e.g.
+# client xxxx {
+# ...
+# operator-name = 1your.domain
+# }
+# If this parameter is found for a client, then we add
+# an Operator-Name attribute
+#
+operator-name.authorize {
+ if ( "%{client:operator-name}" ) {
+ update request {
+ Operator-Name = "%{client:operator-name}"
+ }
+ }
+}
+
+#
+# Before proxing the client add an Operator-Name
+# attribute identifying this site if the operator-name is found for this client
+#
+operator-name.pre-proxy {
+ if (Packet-Type == Access-Request && "%{client:operator-name}") {
+ update proxy-request {
+ Operator-Name := "%{client:operator-name}"
+ }
+ }
+}
# 'raddb/huntgroups' files.
preprocess
+ # If you require that the Operator-Name be set
+ # for your local clients then uncomment the operator-name
+ # below and set the operator-name for your clients in clients.conf
+# operator-name
+
#
# If you want to have a log of authentication requests,
# un-comment the following line, and the 'detail auth_log'
pre-proxy {
# attr_rewrite
+ # Before proxing the request add an Operator-Name attribute identifying
+ # if the operator-name is found for this client.
+ # No need to uncomment this if you have already enabled this in
+ # the authorize section.
+# operator-name
+
# Uncomment the following line if you want to change attributes
# as defined in the preproxy_users file.
# files