User Authenticated even when username not given in USERS file (EAP-TLS)

Alan DeKok aland at deployingradius.com
Wed Mar 28 17:55:31 CEST 2012


Prateek Kumar wrote:
> I am using EAP-TLS for authentication, USERs are getting authenticated
> even when I have not defined the user in USERS file.

  That's how EAP-TLS works.  You issued a client certificate.
Possession of the client certificate means that the user is authenticated.

> 1. Is this behavior normal.

  Yes.

> 2. Should I have to use DEFAULT Auth-Type := Reject at the end of users
> file ?

  No.

  Alan DeKok.


More information about the Freeradius-Users mailing list