Question regarding the direction of eap_tls: <<< recv and eap_tls: >>> send

Alan DeKok aland at deployingradius.com
Sat Nov 14 23:05:22 CET 2020


On Nov 14, 2020, at 4:37 PM, Eric Nguyen <ericvunguyen at gmail.com> wrote:
> I used eapol_test as a client/authenticator against FreeRADIUS 3.0.21.
> 
> - If I set the following parameters in the FreeRADIUS eap file, espol_test
> will results in a failure.
> In this case, "eap_tls: <<< recv TLS 1.3" looks like an exchange from
> FreeRADIUS to eapol_test (SERVER -> CLIENT):
> 
> tls_min_version = "1.3"
> tls_max_version = "1.3"

  TLS 1.3 is not supported for any EAP method.  There is no standard defined for using TLS 1.3.  Don't use TLS 1.3.

  Alan DeKok.




More information about the Freeradius-Users mailing list