Hi My XP client is using PEAP to authenticate. It connects to a Freeradius server that I want to proxy the requests to another Freeradius server with a list of username/passwords to authenticate against.
I've configured a realm in proxy.conf and it all works fine. The problem is that I need access to the "real" username in the PEAP tunnel on the proxy server. So I would like to establish the tunnel using the local server and only once the tunnel has been created (and I have access to the username in it) do the requests get sent to the remote server so that I can authenticate against the user data on the remote server. I have seen the comment in the proxy.conf file about adding a DEFAULT EAP-Type == PEAP, Proxy-ToRealm := LOCAL. If I added this line no PEAP requests were forwarded to the remote server. But the authentication failed before the TLS tunnel was set up on the proxy server. I have attahced the radius logs and config files. Thanks in advance, Mark
radius_logs.tgz
Description: GNU Zip compressed data
