Unencrypted username in radacct/radpostauth for ttls tunnel authenticated user

James T. Mugauri james at africonnect.co.zm
Wed Oct 26 12:04:16 CEST 2011


I have managed to auth a Greenpacket WiMAX MS via an eap ttls tunnel. 
Thanks to Alan's direction earlier, I can also send the service flow 
definitions correctly.

I have now found that subsequent db writes (and logging) associated with 
accounting and postauth functions are the encrypted values (available in 
the tunnel?). Is there a way to ensure that the plaintext values are 
used with all subsequent logging actions?



Irrationally held truths may be more harmful than reasoned errors.
   - Thomas H. Huxley

More information about the Freeradius-Users mailing list