On Sep 12, 2023, at 4:07 AM, Simo Tappola <simo.tappola@gmail.com> wrote:
I re-read my original post and realised I may have given an impression that I am implementing the supplicant part, while in reality I am working on the NAS/authenticator. The supplicant(s) is/are just black boxes for now, although later it might be feasible to transfer also custom data from the authenticator to supplicants, which, in my admittedly limited understanding, should be possible with EAP. That's also why piggy-backing the EAP packets inside RADIUS frames seemed like a clever option. Wireshark also decoded the frames - including embedded EAP packets - correctly.
That's good.
Which library/component would be your recommendation in the authenticator device? I don't particularly *want* to write any code, but at least some amount of customization seems unavoidable.
Again... hostap / wpa_supplicant. It includes a full EAP client implementation, and a RADIUS client implementation. Alan DeKok.