16 Jan
2006
16 Jan
'06
10:34 p.m.
"Gerdisch, Mitchell R (Mitchell)" <gerdisch@lucent.com> wrote:
If I configure freeradius to proxy all requests, and the client (and ultimate RADIUS server) uses some vendor specific attributes, will freeradius as a proxy forward the requests and responses without dropping any of the VSAs?
Yes. Any unknown VSA's, or malformed VSA's are passed along as-is.
In other words, when freeradius is acting as a proxy, does it basically ignore the contents of the request and response?
Not quite. It performs the minimum required encryption/decryption of known attributes (MS-MPPE-Keys, etc). Alan DeKok.