Hi.
I've always been a bit confused about RFC 3748 and protected result indications and how that all works in practice. I'm wondering how GSS-EAP should know when authentication has succeeded or failed. If I'm understanding RFC 3748 you end up sending an eap success or failure packet even if the method supports protected result indication. Is my understanding correct? First, how should we handle cases where the protected result disagrees with the failure/success message? Secondly, we should wait for the failure/success message before deciding whether the context is established or not? _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
