so if a user with a correct certificate tries to authenticate against radius although it is not in the users file will it have access to teh network? is there any way that I can control this access of users with the users file although they have a correct cert? thaks
bfr ----- Mensaje original ----- De: Alan DeKok <[EMAIL PROTECTED]> Fecha: Mi�rcoles, Mayo 12, 2004 10:34 am Asunto: Re: access for eap/tls > BLANCA FERRERO RODRIGUEZ <[EMAIL PROTECTED]> wrote: > > I'm tryng authentication with eap/tls. It works propertly but my > > doubt is: if I try to connect with a user called 'proof' for example > > and it is not included in my users file, should it be allowed to > > connect to the network despite having a correct certificate? > > Yes. The "users" file is just one form of controlling user access. > You can store users in SQL, LDAP, or in signed certificates. > > Alan DeKok. > > - > List info/subscribe/unsubscribe? See > http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
