Hoeper Katrin-QWKN37 wrote: > I am happy with Alan's proposed text except for the paragraph: > > "A peer that either sends or receives a NAK attribute MUST treat the > session as failing authentication." > > I suggest deleting this sentence and adopt the rest of the text.
What are the situations where authentication can continue after a NAK? A NAK of a mandatory attribute should be treated as a failure. Otherwise, what does "mandatory" mean, if it can be ignored? Alan DeKok. _______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu