On Tue, Jul 12, 2011 at 8:32 PM, Sam Hartman <[email protected]> wrote: >>>>>> "Josh" == Josh Howlett <[email protected]> writes: > > Josh> Perhaps we're talking cross-purposes here; which success message are > we > Josh> talk about here? I was assuming the EAP Success message. > > I am too. My point is that you have to wait for the EAP success message > even though it's a half round trip or more beyond where you'd ideally > terminate things in a fully protected result method with a fully > optimized state machine. However, you have to build in too much method > knowledge to do anything else and you have to have non-standard AAA > behavior.
Right. That half-round-trip is a price to pay for using EAP/AAA. And it's another reason to want fast re-auth. Nico -- _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
