Hi, > Hi again and thanks, > > EAP-TTLS/PAP is the defaultI tried configuring the TTLS-PAP inner and > outer tunnel but it will not work. > > EAP-TTLS/PAP ended > > A. If an incoming user conn. against the FreeRadius Server (Nr1) is > belonging to "OTHER" (LOCAL) domain then > the EAP-TTLS tunnel is ended and validated against the LDAP. > > PAP Tunneled (proxied) > > B. If an incoming user conn. against the FreeRadius Server (Nr1) is > belonging to "SECURSERVER" domain then > the EAP-TTLS tunnel is ended and PAP is proxied to other Radius (Nr 2)
i'll assume you are running with the attribute filter running pre and post proxy? if so, you will need to allow a few other attributes through or proxy wont work. alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html