Hi Airheads,
We're migrating our private APN environment from NPS to Clearpass. The authenticating routers all use the username 'void' for every radius request. The differentiator is the calling station ID, which is the mobile number of the supplicant. The Radius server then responds with a framed-ip-address.
I have set up role mapping and enforcement profiles to match a mobile number with a radius response, but I'm stuck at user authentication because ofcourse user 'void' doesn't exist.
Can someone please point me in the right direction to skip or alternate that check please?
*EDIT*
I like to keep it simple, but if there's no way around authentication the username, these attributes may be used instead:
'%{Radius:IETF:NAS-Identifier}' as user_id,
'%{Radius:IETF:NAS-IP-Address}' as user_password
Authentication source may be local or guest, doesn't really matter. I'm not sure how to translate this in a custom source filter.