<br><br><div class="gmail_quote">On Sun, Jan 17, 2010 at 3:33 PM, Alan Buxey <span dir="ltr"><<a href="mailto:A.L.M.Buxey@lboro.ac.uk" target="_blank">A.L.M.Buxey@lboro.ac.uk</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div>
</div>okay. EAP user-name doesnt match the original identity...and no user found either.<br>
<br>
2 things you need to ensure<br>
<br>
1) in proxy.conf you have 'nostrip' defined for <a href="http://example.com" target="_blank">example.com</a><br></blockquote><div><br>This was beginning to occur to me. Initially I ignored proxy.conf because i figured I would never need to proxy anything, but I now see FR proxies to itself... <br>
OK, I just tested this and it resulted in me DoS myself as the request bounced back and forth between 127.0.0.1 and 192.168.1.3. This happened both with my eap.conf and the default eap.conf. Something about there being 200+ Proxy-State attributes.<br>
</div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br>
2) in users file you include the details for the user 'user' eg<br>
<br>
user Cleartext-Password := "password"<br></blockquote><div><br>I'm using Certificate based authentication, with myself as the CA, so no password should be needed correct? Or is the Password used to sign the cert needed here?<br>
</div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<font color="#888888"><br>
<br>
alan<br>
</font><div><div></div><div>-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</div></div></blockquote></div><br>