Bob McCormick <[EMAIL PROTECTED]> wrote: > Hmmm.. I must be doing something wrong. With this config in the > users file: > > DEFAULT Proxy-To-Realm := "adt.com" > Fall-Through = Yes > DEFAULT EAP-Type == PEAP, Proxy-To-Realm := LOCAL > Fall-Through = Yes
It won't work, because the server doesn't know it's going to do PEAP until it's too late. That is, if the server is doing PEAP for a realm, it has to handle ALL eap types locally, or proxy ALL to another server. Due to the way EAP works, you cannot decide to proxy LEAP to another server, and terminate PEAP locally, for that same realm. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
