[EMAIL PROTECTED] writes: > Is there in pppd an option to specify that we want the peer > authenticate us using EAP, and to refuse to continue if it does not > request us ? > I need it to perform an eap-tls authentication.
You'd do it with "refuse-pap refuse-chap refuse-mschap refuse-mschap-v2". But, before you go to that trouble, you should know that the default behavior of pppd is to refuse proposed authentication methods that do not have corresponding key material with which to authenticate. In other words, as long as you don't add entries in /etc/ppp/pap-secrets and /etc/ppp/chap-secrets that match on the "client" and "server" names, pppd will automatically refuse those other authentication methods if proposed by the peer. In general, you shouldn't add and shouldn't have to add pppd options for most "sensible" behaviors. When configuring pppd (or, really, any software), fewer specified options is better. -- James Carlson <[EMAIL PROTECTED]> - To unsubscribe from this list: send the line "unsubscribe linux-ppp" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
