Thanks!<div><br></div><div><br><div class="gmail_quote">On Wed, Oct 20, 2010 at 9:19 AM, Alan DeKok <span dir="ltr"><<a href="mailto:aland@deployingradius.com">aland@deployingradius.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div class="im">Esteban TALAVERA wrote:<br>
> My freeradius + MySQL + EAP_TLS is working, but I have a problem.<br>
><br>
> I assumed that without an entry in MySQl database, the client can not<br>
> authenticate,<br>
<br>
</div> That's not how EAP-TLS works.<br>
<div class="im"><br>
> but I forgot to create one user's database entry and the<br>
> laptop was able to join the network.<br>
><br>
> It is possible a client authentication without a database entry, just<br>
> with the certificates<br>
<br>
</div> That's how EAP-TLS works.<br>
<br>
If you want to reject the user, configure the server to look up the<br>
username in the DB, and reject if they're not found. Or, use TLS as it<br>
was intended to be used: revoke the client certificate.<br>
<font color="#888888"><br>
Alan DeKok.<br>
-<br>
List info/subscribe/unsubscribe? See <a href="http://www.freeradius.org/list/users.html" target="_blank">http://www.freeradius.org/list/users.html</a><br>
</font></blockquote></div><br><br clear="all"><br>-- <br><span style="font-family:arial, sans-serif;font-size:13px;border-collapse:collapse"><p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px"><b><span style="font-size:small"><font color="#666666">Esteban Talavera</font></span></b><font color="#666666"><span style="font-size:small"></span></font></p>
<p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px"><b><span style="font-size:small"><font color="#666666"><br></font></span></b></p><p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px">
<font color="#666666" face="'arial narrow', sans-serif"><span style="font-size:small"><b><i><span><b><span style="font-size:13.5pt;font-family:Arial;color:#990000;background:white">Proyectos ITW C.A.</span></b></span><span style="font-size:10.0pt;font-family:Arial;color:#666666"><br>
<br></span></i></b></span></font></p><p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px"><span lang="ES"><font color="#666666"><span style="font-size:x-small">Tel. </span></font></span><span style="white-space:pre"><font color="#666666"><span style="font-size:x-small"> </span></font></span><font color="#666666"><span style="font-size:x-small">+(58)212 7623035</span></font></p>
<p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px"><span style="white-space:pre"><font color="#666666"><span style="font-size:x-small"> </span></font></span><font color="#666666"><span style="font-size:x-small">+(58)212 7620504</span></font></p>
<p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px"><font color="#666666"><span style="font-size:x-small">Cel.</span></font><span style="white-space:pre"><font color="#666666"><span style="font-size:x-small"> </span></font></span><font color="#666666"><span style="font-size:x-small">+(58)412 2892006</span></font></p>
<p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px"><font color="#666666"><span style="font-size:x-small">Fax </span></font><span style="white-space:pre"><font color="#666666"><span style="font-size:x-small"> </span></font></span><font color="#666666"><span style="font-size:x-small">+(58)212 7615965</span></font></p>
<p style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0px"><font color="#666666" face="'Times New Roman'" size="4"><span style="font-size:16px"><br></span></font></p></span><br>
</div>