[EMAIL PROTECTED] wrote: > I hacked rlm_eap_md5 to actually generate a fake request > containing FreeRADIUS-Proxied-To, Username, CHAP-Challenge > and CHAP-Response attributes and call "rad_authenticate"
rad_authenticate doesn't do proxying. > However, the whole point of my modification was to be able to > proxy the generated CHAP request to some non-EAP-enabled RADIUS > server (similar to proxying inner PAP/CHAP/MSCHAP request of > EAP-TTLS to another server). Yes.... please see the existing TTLS and PEAP code which does exactly this. You have working examples in front of you. Use them. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
