inner/outer authentication problem in 2.0.2
Gopinath Reddy N
gnreddy at gmail.com
Tue Jun 17 12:56:11 CEST 2008
Thanks Alan. This works.
On Thu, Jun 12, 2008 at 11:02 AM, Alan DeKok <aland at deployingradius.com>
wrote:
> Gopinath Reddy N wrote:
> > But by way of hack if user knows some other valid user name in the
> > system he can use that as outer identity and get the policy setting of
> > that user. So to avoid that Iam just thinking is there a way I can come
> > out of this situation in freeradius
>
> Yes. That's why the inner and outer sessions are in different virtual
> servers. Put the policy into the virtual server for the inner tunnel,
> and not for the outer session.
>
> Alan DeKok.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080617/fb5f9109/attachment.html>
More information about the Freeradius-Users
mailing list