31 Jan
2014
31 Jan
'14
5:16 p.m.
On 31 Jan 2014, at 22:03, Alan Buxey <A.L.M.Buxey@lboro.ac.uk> wrote:
Be very careful about the sorts of enforcing suggested... They can cause issues with certain types of authentication. .. eg EAP-TLS where there is no innerID...
ok if (User-Name && outer.User-Name && (User-Name == outer.User-Name)) :)
or eduroam where you don't know the real innerID of visitors.
Wouldn't be going through the inner server. There's no way you can enforce this from the outer server. Arran Cudbard-Bell <a.cudbardb@freeradius.org> FreeRADIUS Development Team FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2