Am Sonntag, 21. M�rz 2004 13:53 schrieb Peter Stamfest: Hello, > The problem is that there is no connection between the certificate and the > id / User-Name: > > * The User-Name can be freely chosen by the supplicant. This username is > then used for authorization (NOT authentication) > > * The certificate gets used for authentication (NOT authorization) > > Trouble is: There is no connection between the two. Assume the following > situation: >
I wrote a patch and submited it to the mailing list. It compares the identity in radius-packet (User-Name) with the identity in the certificat. If they differ the user will be rejected! regards Gunter - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
