EAP/TTLS and Inner Authentication Database

Ivan D. Barrera Tue, 30 Nov 2004 11:55:29 -0800

I have EAP/TTLS implemented by doing the inner authentication against the local system. (That's the way it works right now). However, I would like to implement this by allowing differentiation of users, that is doing the inner authentication against two different files (most likely MD5).

Is there a way to configure Freeradius to authenticate users using different "passwd"/"shadow" files to differentiate service by using different SSIDs?

I assume I can have two "similar" users:

anonymous cisco_avpair=="ssid=1"
   Service-Type = Framed-User

anonymous cisco_avpair=="ssid=2"
   Service-Type = Framed-User

but how can I tell freeradius to authenticate the "first" user based on a different database than the other one? Can I?

Thanks a lot!

Ivan Barrera
ECE Department
University of Delaware.

- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html

EAP/TTLS and Inner Authentication Database

Reply via email to