Sorry for the stupid question :) it was because users checked use alternate outer identity as anonymous on securew2, however, radius log notify about the true identity too:
Fri Mar 14 22:08:09 2008 : Auth: Login OK: [jgala] (from client wireless-jj port 0) Fri Mar 14 22:08:09 2008 : Auth: Login OK: [anonymous] (from client wireless-jj port 29 cli 0016347e5a76) Greets. 2008/3/13, Sergio Belkin <[EMAIL PROTECTED]>: > Hi, > > I am radius 2.0.2 that is working fine, I am using EAP with TTLS. I > found a line that it worried a bit in the logs: > Auth: Login OK: [whateveruser-1] > Auth: Login OK: [whateveruser-2] > Auth: Login OK: [whateveruser-so-on] > Auth: Login OK: [anonymous] > > Why I get anonymous? (Users are authenticated against a LDAP server) > > That use_tunneled_reply=no has to do with it? Should I turn on yes? Is > it a security risk? > > Thanks in advance! > > -- > -- > Open Kairos http://www.openkairos.com > Watch More TV http://sebelk.blogspot.com > > Sergio Belkin - > -- -- Open Kairos http://www.openkairos.com Watch More TV http://sebelk.blogspot.com Sergio Belkin - - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
