Access RADIUS Attributes via ctrl interface?
Jouni Malinen
j at w1.fi
Mon Sep 25 10:45:25 PDT 2017
On Fri, Sep 22, 2017 at 04:53:15PM +1200, Michael Baird wrote:
> Is it correct that we currently cannot retrieve RADIUS attributes for a
> station via the ctrl interface?
>
> Assuming we can't, are the RADIUS attributes saved after they are received
> from the RADIUS server in any structs where it might be possible to get them
> at a later point? (From what I can tell it isn't)
Some information from the RADIUS attributes is likely
saved and exposed in some ways, but if you are asking about all RADIUS
attributes in general, no, they are not available.
> Basically we have an application where we are using hostapd to perform
> 802.1X authentication, and when the authentication is successful would like
> to retrieve (in particular) vendor specific attributes for that client.
I guess it would be reasonable to add option to save such information
for the duration of an association. That said, this can use quite a bit
of memory, so it probably make sense to make this configurable behavior.
Are you thinking of mainly (only?) information from Access-Accept or
would there be need to store attributes from Access-Challenge as well?
--
Jouni Malinen PGP id EFC895FA
More information about the Hostap
mailing list