Klaus Klein wrote: > Also > ... an authorization module searches a database ... > (/etc/freeradius/users ?) > --- if none of database records for this User-Name matches ... > authorization will fail. > > Therefore I'm a bit puzzled that if no matching entry in users is found > that the authentication still takes place.
Because if you read the raddb/sites-available/default, the "eap" module is run during authorization. > I think in that case the behavior contradicts the 'Request Processing' > described in aaa.rst.gz No. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
