>>>>> "Yoshihiro" == Yoshihiro Ohba <[email protected]> writes:
Yoshihiro> Hi Sam,
Yoshihiro> (2011/10/20 21:48), Sam Hartman wrote:
>>>>>>> "Yoshihiro" == Yoshihiro Ohba<[email protected]>
>>>>>>> writes:
>>
Yoshihiro> Hi Sam, Since authorization and accounting with the use
Yoshihiro> of the pre-authentication may be different from those
Yoshihiro> with the use of normal authentication, it would be good
Yoshihiro> to differentiate pre-auth and without pre-auth for
Yoshihiro> network access authentication protocols that support
Yoshihiro> pre-authentication, PANA and 802.11 are such protocols as
Yoshihiro> far as I know.
>> OK, but Dan is arguing to remove them.
Yoshihiro> I see. As long as all lower-layers are treated in a
Yoshihiro> consistent manner, I am ok. Maybe it is cleaner to
Yoshihiro> define pre-auth information as separate channel binding
Yoshihiro> data.
You might not want to do it that way. It seems that learning the
eap-lower-layer from the NAS may influence your accounting handling
(especially for pre-auth) even if the client does not specify channel
binding.
That's something for the WG to consider and possibly something where we
need to circle back with radext.
_______________________________________________
Emu mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/emu
