"Htin Hlaing" <[EMAIL PROTECTED]> wrote: > Would it be right to say that a RADIUS server in 802.1X authentication > allows a client to be authenticated but can not unauthenticate a > authenticated client and let the AP(Nas) know about this > unauthentication.
Yes. This is in the FAQ. The RADIUS server does not, and can not, kick users offline. > So, if I log on with my XP laptop through 802.1X successfully and then a > few minutes later, the system admin logged off all users (including me) > with the intent to force reauthentications. But, my laptop thinks it's > still authenticated and logged in. Is there a way from the RADIUS server > to notify the client so, the client detects it's unauthenticated and > tries to start 802.1X session again. No. See your AP documentation for possible ways to kick users offline. If there are no methods listed, it's impossible. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
