If I understand you correctly….are you looking to associate a user directly to
a device they own (pda, laptop, etc).?
If so, I think the challenge would be how to control whether the outer identity
can be changed by the user. If I were a bad guy, I'd just impersonate someone
else, and just cha
Neil, What problem are you trying to solve by doing this?
-Steve
On Nov 11, 2010, at 11:06 AM, Johnson, Neil M wrote:
Does anyone have suggestion on how to reject a user if there outer identity
doesn't match their inner identity ?
Thanks.
-Neil
--
Neil Johnson
Network Engineer
Information T
wrote:
On 1:59 PM, Stephen A. Felicetti wrote:
> On Nov 4, 2010, at 3:32 PM, David Zych wrote:
>>
>> I fought with this same issue and eventually discovered that the
>> Radiator documentation is misleading: including both an
>> EAPTLS_CertificateFile (
If I exclude the EAPTLS_CAFile, I get the following error:
Thu Nov 4 16:06:42 2010: ERR: TLS could not load_verify_locations , :
Thu Nov 4 16:06:42 2010: DEBUG: EAP result: 1, EAP TTLS Could not initialise
context
Thu Nov 4 16:06:42 2010: DEBUG: AuthBy FILE result: REJECT, EAP TTLS Could not
y reversing the order of
certs in your file and see if it works.
--
Andrew Clark
On Thursday, November 04, 2010 07:30:42 am Stephen A. Felicetti wrote:
> Hello,
>
> I'm currently running Radiator 4.7 on SUSE linux with OpenSSL 0.9.8h.
> I've had this running for years w
2 12:03:58 2010: ERR: TLS could not use_PrivateKey_file
%D/certificates/cert/thawtekey.pem, 1: 23681: 1 - error:0B080074:x509
certificate routines:X509_check_private_key:key values mismatch
Thanks,
Steve
Stephen A Felicetti
Fox Chase Cancer Center
Director, Information Security
stephen.felice
Thanks, Joost...that's a good idea. Only problem is that I don't have any
unused attributes in the schema, and I'm being told from our LDAP admin that
it's difficult to add them.
Do you know if Open Consultants would offer consulting for the
implementation of LDAP groups?
-Original Message--
Hi there!
Just installed Radiator under Sun 5.6, and I'm able to authentic nicely
using username/password against LDAP.
I have Radiator installed so it can authentic remote users through a Cisco
AS.
There is a limited amount of users that will be allowed to do this.
I can setup a group within LD