Re: Eap ttls and LDAP
On Wed, 10 Dec 2003, Arthur EBEL wrote: Hi, I am using freeradius 0.9.3 on a linux box I have found the eap_ttls module in the CVS tree How to install it ??? ./configure make make install Can anyone can explain me the interest to use EAP TTLS + LDAP I dont want to use personnal certificate but only the login and ldap passwd of the personn Is TTLS+LDAP it a good solution to do that ??? Yes it is. Anyone have test it ??? Any recommandations ??? It works out of the box. Just uncomment the necessary modules in the authorize/authenticate sections and configure the eap(tls/ttls) and ldap modules. Thanx - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Eap ttls and LDAP
Kostas Kalevras [EMAIL PROTECTED] wrote: I am using freeradius 0.9.3 on a linux box I have found the eap_ttls module in the CVS tree How to install it ??? ./configure make make install And watch the server dies as soon as it receives an EAP-TTLS request. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Eap ttls and LDAP
Arthur EBEL [EMAIL PROTECTED] wrote: I am using freeradius 0.9.3 on a linux box I have found the eap_ttls module in the CVS tree How to install it ??? You install a snapshot. You can't use EAP-TTLS with 0.9.3. I dont want to use personnal certificate but only the login and ldap passwd of the personn EAP-TTLS doesn't require personal certificates. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
RE : eap/ttls
Hi :-) I would like to know Where I can find the rlm_eap_ttls module and how to install it Have u dot an idea how to mix eap ttls and ldap authentication ??? -Message d'origine- De : [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] De la part de Alan DeKok Envoyé : jeudi 4 décembre 2003 19:14 À : [EMAIL PROTECTED] Objet : Re: eap/ttls David L Wolford [EMAIL PROTECTED] wrote: rlm_eap: Failed to link EAP-Type/ttls: file not found radiusd.conf[606]: eap: Module instantiation failed. In addition to removing the comments for ttls what other steps must be taken to enable eap/ttls? You've got to install the rlm_eap_ttls module. It should do that, though... Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: RE : eap/ttls
Arthur EBEL [EMAIL PROTECTED] wrote: I would like to know Where I can find the rlm_eap_ttls module and how to install it Grab the latstes CVS snapshot. Have you tried that? Have u dot an idea how to mix eap ttls and ldap authentication ??? You don't need to do anything special. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: eap/ttls
David L Wolford [EMAIL PROTECTED] wrote: rlm_eap: Failed to link EAP-Type/ttls: file not found radiusd.conf[606]: eap: Module instantiation failed. In addition to removing the comments for ttls what other steps must be taken to enable eap/ttls? You've got to install the rlm_eap_ttls module. It should do that, though... Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS /etc/shadow
On Fri, 14 Nov 2003, Alan DeKok wrote: Ralf Paffrath [EMAIL PROTECTED] wrote: I set Auth-Type to System but no TTLS-tunnel session would be established and I got the following debugging output: ... modcall: group authorize returns updated for request 0 rad_check_password: Found Auth-Type EAP rad_check_password: Found Auth-Type System Warning: Found 2 auth-types on request for user 'HUGO' sigh Did you READ what i wrote? I did READ what you wrote! I wasn't sure how to set Auth-Type to System for the tunneled user. ;-) Set Auth-Type to System for the tunneled user, The username inside of the tunnel IS different that the username outside of the tunnel, isn't it? Right! Now, I let: username Auth-Type := System and deleted DEFAULT Auth-Type :=System Fall-Through = Yes from users file. After configuring SecureW2 to set the username used for secure tunnel to [EMAIL PROTECTED] and let SecureW2 prompting for users credentials it's working. Now I can autenticate the tunneld user against /etc/shadow. Thanks Alan for the hints! Ralf. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS /etc/shadow
Ralf Paffrath [EMAIL PROTECTED] wrote: I'm running a snapshot version of freeradius with EAP/TTLS for authN. My supplicant is SecureW2. Everything works fine as long as I put in the plaintext user-password in users configuration file and didn' set Auth-Type, e.g. username User-Password == blabla. Ok... I absolutely don't like plaintext passwords in some files so I tried freeradius out to use /etc/shadow but with no success. Plain-text passwords aren't much of a problem from a security perspective. They also allow you to do CHAP authentication, which is impossible with /etc/passwd. Auth-Type := EAP doesn't work: ... auth: type EAP modcall: entering group authenticate for request 5 rlm_eap: EAP-Message not found Exactly. Don't set Auth-Type := EAP. EVER. Any idea? Set Auth-Type to System for the tunneled user, and read the debugging output of the server. I note that you did NOT post that debugging output, which is the ONLY relevant thing here. I set Auth-Type to System but no TTLS-tunnel session would be established and I got the following debugging output: ... modcall: group authorize returns updated for request 0 rad_check_password: Found Auth-Type EAP rad_check_password: Found Auth-Type System Warning: Found 2 auth-types on request for user 'HUGO' auth: type System modcall: entering group authenticate for request 0 rlm_unix: Attribute User-Password is required for authentication. modcall[authenticate]: module unix returns invalid for request 0 modcall: group authenticate returns invalid for request 0 auth: Failed to validate the user. ... This output led me to the assumption that Auth-Type set to System is wrong, so I set Auth-Type to EAP. When I didn't set Auth-Type, e.g username User-Password blabla and set DEFAULT Auth-Type += System Fall-Through = YES I can authenticate with plaintext password and with /etc/passwd , so I got two valid passwords. With both passwords TTLS-tunnel sessions were established, weird! Ralf. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS /etc/shadow
Ralf Paffrath [EMAIL PROTECTED] wrote: I set Auth-Type to System but no TTLS-tunnel session would be established and I got the following debugging output: ... modcall: group authorize returns updated for request 0 rad_check_password: Found Auth-Type EAP rad_check_password: Found Auth-Type System Warning: Found 2 auth-types on request for user 'HUGO' sigh Did you READ what i wrote? Set Auth-Type to System for the tunneled user, The username inside of the tunnel IS different that the username outside of the tunnel, isn't it? If not, then nothing will work. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS /etc/shadow
Ralf Paffrath [EMAIL PROTECTED] wrote: I'm running a snapshot version of freeradius with EAP/TTLS for authN. My supplicant is SecureW2. Everything works fine as long as I put in the plaintext user-password in users configuration file and didn' set Auth-Type, e.g. username User-Password == blabla. Ok... I absolutely don't like plaintext passwords in some files so I tried freeradius out to use /etc/shadow but with no success. Plain-text passwords aren't much of a problem from a security perspective. They also allow you to do CHAP authentication, which is impossible with /etc/passwd. Auth-Type := EAP doesn't work: ... auth: type EAP modcall: entering group authenticate for request 5 rlm_eap: EAP-Message not found Exactly. Don't set Auth-Type := EAP. EVER. Any idea? Set Auth-Type to System for the tunneled user, and read the debugging output of the server. I note that you did NOT post that debugging output, which is the ONLY relevant thing here. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS Proxying
Fastbyte [EMAIL PROTECTED] wrote: Is there any news on proxying EAP/TTLS? Does the thing work? p.s. in last discussion on mailing list Alan has said that this don´t work. There has been no announcement that it works, so it still doesn't work. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP-TTLS.
On Thu, 9 Oct 2003, Raj Jadhav wrote: Hi Anybody has implemented EAP-TTLS, or more details on how to implement EAP TTLS with PAP? I am facing a problem with an ISP has old legacy platform with Merit RADIUS and IBM LDAP, I tried to test with FREE RADIUS and IBM LDAP. IBM LDAP responds nicely to Free RADIUS with crypto password of user. When I enter my username and password through 802.1x Ethernet switch by XP client with md5 challenge. FreeRADIUS debug says MD5 challenge failure It means my Free RADIUS server is not understanding passwords of users. How can I convert the crypto passwords in IBM LDAP to MD5 passwords. You can't. EAP-MD5 is the same as CHAP. See: http://www.freeradius.org/faq/#4.4 http://www.freeradius.org/faq/#5.11 Or same thing can be used with EAP-TTLS?? I am confused Thanks in advance Raj Jadhav - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Kostas Kalevras Network Operations Center [EMAIL PROTECTED] National Technical University of Athens, Greece Work Phone: +30 210 7721861 'Go back to the shadow' Gandalf - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: eap-ttls pap can't work with aegis client
george [EMAIL PROTECTED] wrote: I have tested eap-ttls with freeradius and client is aegis, the ms-chap, ms-chap-v2 and eap-md5 is work, but it seems the pap and chap isn't work, here is the message from radiusd(using eap-ttls-pap), thanks ! PAP CHAP work fine with the Aegis client. You've broken your local configuration, to disable PAP CHAP. modcall[authorize]: module suffix returns noop users: Matched test at 114 You've set 'Auth-Type := EAP' here, for this user. Don't do that. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Hi Michael, that´s right. Is there any possibility to do such thing in freeradius? And the rest of problem is to see in inner authentification in log file a real username. Michael Brown wrote: This thread from the radiator list may shed some light on the situation: http://www.open.com.au/archives/radiator/2003-08/msg00084.html Quoting Fastbyte [EMAIL PROTECTED]: I use Odyssey client, and the problem is that in log is only anonymous user. In freeradius -X -A its possible to see which user is getting authe´d but in log files is only anonymous. Michael Brown mikro network solutions * http://www.mikro-net.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- --- Sergio - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Fastbyte [EMAIL PROTECTED] wrote: is there any logging done in TTLS? What kind of logging are you looking for? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Just the normal auth log of the ttls challenge; i see the tls log in the detail auth_log, but nothing of the inner authentication protocoll. I need username and logintime. Alan DeKok wrote: Fastbyte [EMAIL PROTECTED] wrote: is there any logging done in TTLS? What kind of logging are you looking for? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- --- Sergio - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Fastbyte [EMAIL PROTECTED] wrote: Just the normal auth log of the ttls challenge; i see the tls log in the detail auth_log, but nothing of the inner authentication protocoll. I need username and logintime. That should be logged when the tunneled authentication request is processed. That request looks like just another request from a client, so all logging should be done. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
I use Odyssey client, and the problem is that in log is only anonymous user. In freeradius -X -A its possible to see which user is getting authe´d but in log files is only anonymous. Alan DeKok wrote: Fastbyte [EMAIL PROTECTED] wrote: Just the normal auth log of the ttls challenge; i see the tls log in the detail auth_log, but nothing of the inner authentication protocoll. I need username and logintime. That should be logged when the tunneled authentication request is processed. That request looks like just another request from a client, so all logging should be done. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- --- Regards, MfG, Dist.Saluti, Sergio - Srdjan Vemic, CEO Chief Executive Office, FutureBrain [EMAIL PROTECTED] +-+ | FutureBrain GmbH/Srl,Via Palade 97/u,I-39012 Merano(BZ),Italy | | Phone: +390473201457, Fax: +390473201437, Cell.: +393356057014 | | [EMAIL PROTECTED], w w w . f u t u r e b r a i n . i t | +-+ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Ok the auth request is beeing logged into the detail log (auth_detail) but only with the anonymous user and looks like this: Packet-Type = Access-Request Fri Sep 12 17:13:19 2003 User-Name = anonymous NAS-IP-Address = 192.168.2.220 Called-Station-Id = 0030bd965f14 Calling-Station-Id = 0030bd97d313 NAS-Identifier = 0030bd965f14 NAS-Port = 87 Framed-MTU = 1400 State = 0x5611f831363f85a702c738c261c2b189 NAS-Port-Type = Wireless-802.11 EAP-Message = 0x0204003f158000351703010030e56b0eed1cbf43a372f441195e90c01ce5a402b658d408cb5b6b1b014dbbfaadedeae45c 779f692579e2764ba522c184 Message-Authenticator = 0x86b281dfbf1024da1a5ccd4e38a34539 Client-IP-Address = 192.168.2.220 The part i see in the radius -X -A looks as follows: TTLS: Got tunneled reply RADIUS code 2 Framed-IP-Address = 192.168.2.23 Exec-Program-Wait = my_exec_postauth Session-Timeout = 1800 EAP-Message = 0x03010004 Message-Authenticator = 0x User-Name = tobi TTLS: Got tunneled Access-Accept This part in the logs is never apearing, neither in auth_log or in detail_log. Alan DeKok wrote: Fastbyte [EMAIL PROTECTED] wrote: I use Odyssey client, and the problem is that in log is only anonymous user. In freeradius -X -A its possible to see which user is getting authe'd but in log files is only anonymous. WHICH log files are getting WHAT logged? Can you please be a little more specific, I'm not a mind reader. I get the feeling that you're going out of your way to refuse to provide any useful information in your messages. As I said before, the tunneled authentication request is just another authentication request for the server. So any and all authentication logging done for normal requests is done for the tunneled requests. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- --- Regards, MfG, Dist.Saluti, Sergio - Srdjan Vemic, CEO Chief Executive Office, FutureBrain [EMAIL PROTECTED] +-+ | FutureBrain GmbH/Srl,Via Palade 97/u,I-39012 Merano(BZ),Italy | | Phone: +390473201457, Fax: +390473201437, Cell.: +393356057014 | | [EMAIL PROTECTED], w w w . f u t u r e b r a i n . i t | +-+ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Fastbyte [EMAIL PROTECTED] wrote: Ok the auth request is beeing logged into the detail log (auth_detail) but only with the anonymous user and looks like this: ... OK... The part i see in the radius -X -A looks as follows: TTLS: Got tunneled reply RADIUS code 2 Framed-IP-Address = 192.168.2.23 Exec-Program-Wait = my_exec_postauth Session-Timeout = 1800 EAP-Message = 0x03010004 Message-Authenticator = 0x User-Name = tobi TTLS: Got tunneled Access-Accept This part in the logs is never apearing, neither in auth_log or in detail_log. Are you sure? As I've said repeatedly, the tunneled request is just another request. So that 'tobi' User-Name should be seen in the 'detail' file, just like in the 'anonymous' user is seen there. I don't want to sound stupid, but have you looked for user 'tobi' in the detail log? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Hi Alan, Sure, I´m sure and I have looked. Should i send the whole file (don´t want to spam the list) maybe you could find it. ;) Sorry but that´s the truth.. Hope that we will find a solution for this glitch... Alan DeKok wrote: Fastbyte [EMAIL PROTECTED] wrote: Ok the auth request is beeing logged into the detail log (auth_detail) but only with the anonymous user and looks like this: ... OK... The part i see in the radius -X -A looks as follows: TTLS: Got tunneled reply RADIUS code 2 Framed-IP-Address = 192.168.2.23 Exec-Program-Wait = my_exec_postauth Session-Timeout = 1800 EAP-Message = 0x03010004 Message-Authenticator = 0x User-Name = tobi TTLS: Got tunneled Access-Accept This part in the logs is never apearing, neither in auth_log or in detail_log. Are you sure? As I've said repeatedly, the tunneled request is just another request. So that 'tobi' User-Name should be seen in the 'detail' file, just like in the 'anonymous' user is seen there. I don't want to sound stupid, but have you looked for user 'tobi' in the detail log? Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- --- Regards, MfG, Dist.Saluti, Sergio - Srdjan Vemic, CEO Chief Executive Office, FutureBrain [EMAIL PROTECTED] +-+ | FutureBrain GmbH/Srl,Via Palade 97/u,I-39012 Merano(BZ),Italy | | Phone: +390473201457, Fax: +390473201437, Cell.: +393356057014 | | [EMAIL PROTECTED], w w w . f u t u r e b r a i n . i t | +-+ - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
Fastbyte [EMAIL PROTECTED] wrote: Sure, I'm sure and I have looked. Then I don't know what the problem is. I see no reason why the 'detail' module would log the outer request, and not the inner one. Paret of the issue may be I don't know what you mean when you say auth_log and detail_log. There are no such log files distributed with the server, or configured in the server by default. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS logging
This thread from the radiator list may shed some light on the situation: http://www.open.com.au/archives/radiator/2003-08/msg00084.html Quoting Fastbyte [EMAIL PROTECTED]: I use Odyssey client, and the problem is that in log is only anonymous user. In freeradius -X -A its possible to see which user is getting authe´d but in log files is only anonymous. Michael Brown mikro network solutions * http://www.mikro-net.com - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS problem with EAP/MD5
Fastbyte [EMAIL PROTECTED] wrote: i have problem with implementing of EAP/TTLS on freeradius, i have setup auth in EAP/TTLS to EAP/MD5 and this is my error: ... rlm_eap: No such EAP type 4 It looks like you don't have the 'md5' sub-module configured inside of the 'eap' module. Either you've deleted it, or you've re-ordered the list of sub-modules. looking at the source i have seen that the problem is in following lines: #eap.c if ((default_eap_type PW_EAP_MD5) || (default_eap_type PW_EAP_MAX_TYPES) || (inst-types[default_eap_type] == NULL)) { ... looking at eap.h have seen that PW_EAP_MD5 value is 4. Well.. The value of PW_EAP_MD5 is NOT less than PW_EAP_MD5, and it's not MORE than the valur of PW_EAP_MAX_TYPES, so by the process of elimination, it means that the last test is the one which is failing. Include a configuration entry for 'md5', just like the default 'radiusd.conf'. List 'ttls' after 'md5', just like the default 'radiusd.conf' Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS on FreeRadius
I'm working on it. From: Fastbyte [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: EAP/TTLS on FreeRadius Date: Wed, 27 Aug 2003 22:14:24 +0200 Does anyone already workin on EAP/TTLS for FreeRadius Sergio - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html _ The new MSN 8: advanced junk mail protection and 2 months FREE* http://join.msn.com/?page=features/junkmail - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP/TTLS on FreeRadius
When it will be ready for alfa or beta test? Ping Zhou wrote: I'm working on it. From: Fastbyte [EMAIL PROTECTED] Reply-To: [EMAIL PROTECTED] To: [EMAIL PROTECTED] Subject: EAP/TTLS on FreeRadius Date: Wed, 27 Aug 2003 22:14:24 +0200 Does anyone already workin on EAP/TTLS for FreeRadius Sergio - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html _ The new MSN 8: advanced junk mail protection and 2 months FREE* http://join.msn.com/?page=features/junkmail - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html -- Best regards, Sergio Srdjan Vemic Chief Executive Officer - CEO + | FutureBrain GmbH/Srl | Via Palade 101 A/B, I-39012 Merano (BZ) | Tel.+390473201457 Fax.+390473201437 + - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP-TTLS and EAP-PEAP support
Janko Kersnik [EMAIL PROTECTED] wrote: do you have any information, when will you support EAP-TTLS and EAP-PEAP. As it can be seen from developers mailing list you are doing something on it. Lots of people have said they're working on TTLS PEAP. So far, no one has submitted patches. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP-PEAP [Was RE: EAP-TTLS]
Mayank Upadhyay [EMAIL PROTECTED] wrote: On a related note, is anyone considering writing an EAP-PEAP module? Have you tried looking through the list archives for the past week? PEAP is essentially MS-CHAPv2 tunneled inside of EAP-TLS. It was. It's not any longer. It's EAP inside of EAP-TLS Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP-TTLS
Hi, I have been working with xsupplicant and free radius on redhat 8.2 I could successfully set-up the eap-tls config. Now I want to test EAP-TTLS protocol on free radius using xsupplicant as the client software. The latest version of Xsuplicant has the EAP-TTLS protocol. However the current freeradius cvs version I am working on does'nt seem to support the TTLS protocol. Want to know if any one is working on the free radius code right now for implementing EAP-TTLS. And if it in the future will support it. Would greatly help if anyone could give suggestions regarding the server side code for EAP-TTLS. Thanks and Regards BN - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
EAP-PEAP [Was RE: EAP-TTLS]
On a related note, is anyone considering writing an EAP-PEAP module? PEAP is essentially MS-CHAPv2 tunneled inside of EAP-TLS. Conceptually, it's similar to HTTPS on the web where the server is authenticated using its certificate, and the user with a password. Windows XP and most RADIUS vendors support PEAP. -Mayank -Original Message- Message: 7 From: Nirmala Bulusu [EMAIL PROTECTED] Subject: Re: EAP-TTLS To: [EMAIL PROTECTED] Date: Fri, 20 Jun 2003 15:01:00 -0600 Reply-To: [EMAIL PROTECTED] Hi, I have been working with xsupplicant and free radius on redhat 8.2 I could successfully set-up the eap-tls config. Now I want to test EAP-TTLS protocol on free radius using xsupplicant as the client software. The latest version of Xsuplicant has the EAP-TTLS protocol. However the current freeradius cvs version I am working on does'nt seem to support the TTLS protocol. Want to know if any one is working on the free radius code right now for implementing EAP-TTLS. And if it in the future will support it. Would greatly help if anyone could give suggestions regarding the server side code for EAP-TTLS. Thanks and Regards BN - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: Re: EAP-TTLS
Alan DeKok, Thanks Alan. Jeson [EMAIL PROTECTED] 2003-05-30 === 2003-05-29 09:02:00 === =?GB2312?Q?=CD=F5=D6=BE=D0=C0?= [EMAIL PROTECTED] wrote: Does FreeRADIUS supprot EAP-TTLS and PEAP? It's not in the list of features on the web site, so my guess would be no. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Re: EAP-TTLS
=?GB2312?Q?=CD=F5=D6=BE=D0=C0?= [EMAIL PROTECTED] wrote: Does FreeRADIUS supprot EAP-TTLS and PEAP? It's not in the list of features on the web site, so my guess would be no. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html