Ben Dowling <[EMAIL PROTECTED]> wrote: > I still haven't figured this one out, and would really appreciate some > help. I've tried playing around with the DEFAULT profile in the users > file, giving it Auth-Type: Reject, but certificates with CN not in the > database are still authenticated. How do I get freeradius to check for > the username in mysql with EAP-TLS?
I don't recall if you can get at the CN from the certificate. Maybe try keying off of the User-Name? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
