the authorization section will describe which authentication method to use. AuthType := System is perfect (personally i would take Local, sounds more logical to me :)) as long as you have some authorization section module telling to use something different. For EAP such a module will be EAP itself, it will inspect the incoming packet and change the AuthType to EAP automatically.
take a look at the EAP-MD5 howto, probably you don't have the EAP module in the autz section.
ciao artur
L. Jacob wrote:
Alan,
Thank-you for the response, I've taken your advice and searched for Auth-Type := System (in file "users"). I have changed the default Auth-Type := System to Auth-Type =: EAP.
I am suprised, however, I thought if FreeRADIUS loads EAP (both md5 and tls modules) correctly, and in the "users" file if a user specifies something like:
adam-ctl Auth-Type := EAP
I thought it would override the default "system" and tell FreeRADIUS to use "eap", for this one user/instance. (A learning experience...)
Again, thank-you for your help Alan,
Len Jacob
Alan DeKok wrote:
"L. Jacob" <[EMAIL PROTECTED]> wrote:
The FreeRADIUS server itself IS loading TLS module, yet is using "Auth-Type System" (further down in the output) is this right? Shouldn't it be using "Auth-Type EAP"?
Not if you told it to use Auth-Type := System, which is the way it comes by default.
modcall[authorize]: module "suffix" returns noop users: Matched DEFAULT at 152
Check out that line. That's what you missed.
Alan DeKok.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
-- Artur Hecker D�partement Informatique et R�seaux, ENST Paris http://www.infres.enst.fr/~hecker
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
