Chris Parker wrote:
Is there a particular problem you are trying to solve? It might be better to spell out your problem, and listen to the proposed solutions than trying to jump straight to a solution as the one you see may not be perhaps the 'best' for your particular problem.
there are 2 specific problems i'm trying to solve.
1. it seems the NAS i'm using ( a Buffalo AirStation Pro http://www.buffalotech.com/wireless/products/airstationpro/WLMRL11G.html ) doesn't support the accounting side of the RADIUS suite. i never saw any Accounting-Start packets from the NAS while testing client authentication. i do have EAP-TLS running with MS-CHAP.
2. during testing, I didn't have the DEFAULT: Access-Accept turned off somewhere. as a result, the test user that did authenticate never showed up in the radacct tables, in the detail files, or anywhere ... but i did see the authentication packets while watching the logfile. the side effect -- restarting both the RADIUS server and the NAS didn't kick the user off. and radwho doesn't show this test user logged in. ( it's an internal user, so i'm not too worried about it .... )
testing via NTRadPing works fine. denies non-users, etc. it's just this still-connected user ....
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
