Hi,
maybe i’m on a wrong way but I need a little help:
its necessary to have the split-at-@-sign to enable logins to different realms. I also need to have realms to login with the email-address via freeradius for VPN. I made some unlang-code to fill the radius-realm with the right value and pass it to PI but PI is unable to match the stripped username to a full email-address.
I tried to match it with mailnickname, but in these ActiveDirectories it is not always filled the right way.
Is there a way to do some sort of wildcard-matching with loginname?
How do you have your LDAP Loginname attribute configured? Whatever attribute(s) you put into this box are values that will be accepted as a login name. If you are using Active Directory, the mail attribute should contain the email address of the user. You shouldn’t need additional code to manipulate the incoming auth request.