Graham Leggett wrote: > When using client certificates in EAP-TLS, the check_cert_cn option exists > that allows you to check that the username matches the CN. Is there a > corresponding option somewhere that will allow you to verify the User-Name > against the subjectAltName instead?
In the latest version of the server, see raddb/sites-available/default. Look for TLS-Cert Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
