RE: terminate eap-ttls

2013-06-20 Thread adrian.p.smith
> >>> What I really need to do is proxy the inner message to another > >>> Radius server which will do the authentication but I cannot get this > >>> to work. Whatever I try, I always see an EAP-Message avp heading off > >>> to the remote server. I have looked at the proxy-inner-tunnel > >>> vi

Re: terminate eap-ttls

2013-06-19 Thread Phil Mayers
On 19/06/13 14:54, adrian.p.sm...@bt.com wrote: What I really need to do is proxy the inner message to another Radius server which will do the authentication but I cannot get this to work. Whatever I try, I always see an EAP-Message avp heading off to the remote server. I have looked at the pro

Re: terminate eap-ttls

2013-06-19 Thread A . L . M . Buxey
Hi, > >This *is* proxying the inner tunnel; the inner tunnel auth is also EAP, and > >you're sending it to the remote server. > > Thanks, this is NOT what I want to do. I want to send the inner message, not > the tunnel and do PAP on the remote server. okay. so you need to start by terminating

RE: terminate eap-ttls

2013-06-19 Thread adrian.p.smith
>> What I really need to do is proxy the inner message to another Radius >> server which will do the authentication but I cannot get this to work. >> Whatever I try, I always see an EAP-Message avp heading off to the >> remote server. I have looked at the proxy-inner-tunnel virtual server >> bu

RE: terminate eap-ttls

2013-06-19 Thread adrian.p.smith
>>I have managed to setup a simple test using eapol_test as per >> >> http://www.openlogic.com/wazi/bid/188089/Authenticating-Wi-Fi-Users-wi >> th-FreeRADIUS >thats a rather old...and random URL. why not look at official docs? I'd be glad to. Please direct me to some that explain how to d

Re: terminate eap-ttls

2013-06-19 Thread Phil Mayers
On 19/06/13 13:28, adrian.p.sm...@bt.com wrote: What I really need to do is proxy the inner message to another Radius server which will do the authentication but I cannot get this to work. Whatever I try, I always see an EAP-Message avp heading off to the remote server. I have looked at the prox

Re: terminate eap-ttls

2013-06-19 Thread A . L . M . Buxey
Hi, >I have managed to setup a simple test using eapol_test as per > > http://www.openlogic.com/wazi/bid/188089/Authenticating-Wi-Fi-Users-with-FreeRADIUS thats a rather old...and random URL. why not look at official docs? >and it all works as described except that I have to use ca.p

terminate eap-ttls

2013-06-19 Thread adrian.p.smith
I have managed to setup a simple test using eapol_test as per http://www.openlogic.com/wazi/bid/188089/Authenticating-Wi-Fi-Users-with-FreeRADIUS and it all works as described except that I have to use ca.pem instead of server.pem. I think this might be because the example uses an older version