terminate eap-ttls
Phil Mayers
p.mayers at imperial.ac.uk
Wed Jun 19 15:03:20 CEST 2013
On 19/06/13 13:28, adrian.p.smith at bt.com wrote:
> What I really need to do is proxy the inner message to another Radius
> server which will do the authentication but I cannot get this to work.
> Whatever I try, I always see an EAP-Message avp heading off to the
> remote server. I have looked at the proxy-inner-tunnel virtual server
> but am unsure how to use it.
This *is* proxying the inner tunnel; the inner tunnel auth is also EAP,
and you're sending it to the remote server.
If the remote server doesn't support EAP, you will need to investigate the:
proxy_tunneled_request_as_eap
...option in eap.conf. This is set on the outer EAP type (peap or ttls)
More information about the Freeradius-Users
mailing list