I'm trying to strip both the host/ prefix as well as @FQDN from an EAP-TLS authentication and I cannot extract just the username from the request. I have tried multiple variation of the strip username rules:
/:user,user:@
user:@,/:user
The engine doesn't appear to be honoring both rules. If I apply the first variation, the resulting username is host/user. If I apply the second variation, the resulting username is user@FQDN. I cannot get just the user no matter how I alter the syntax. What am I missing?