21 Apr
2007
21 Apr
'07
3:37 p.m.
Phil Mayers wrote:
Except if you're using plain EAP-TLS where there's no inner tunnel IIRC?
Yes.
I have wondered where it might be sensible to fake a PAP request with the certificate details for EAP-TLS. This would provide (I think) quite a good way for people to do certificate checking and logging etc.
It's not a bad idea. Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog