PEAP is the only one listed in my config right now just because it's the only one I've been testing with (I'm trying to follow your advice actually and keep the config as simple as I can).
On Apr 13, 2004, at 1:32 PM, Alan DeKok wrote:
Bob McCormick <[EMAIL PROTECTED]> wrote:Hmmm.. I must be doing something wrong. With this config in the users file:
DEFAULT Proxy-To-Realm := "adt.com" Fall-Through = Yes DEFAULT EAP-Type == PEAP, Proxy-To-Realm := LOCAL Fall-Through = Yes
It won't work, because the server doesn't know it's going to do PEAP until it's too late.
That is, if the server is doing PEAP for a realm, it has to handle ALL eap types locally, or proxy ALL to another server. Due to the way EAP works, you cannot decide to proxy LEAP to another server, and terminate PEAP locally, for that same realm.
Alan DeKok.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
