Hi,

 

            I’m using Freeradius for both Mac and WPA authentication (EAP-TTLS) of my WiFi users, and i’m facing a trouble I have no idea how to solve :

            In my users file I’ve set a list of the mac address like this :

 

# Portable MACHIN

"001122334455"          Auth-Type := Accept

                        Cisco-AVpair := "ssid=Machin",

                        Cisco-AVpair += "ssid=Machin2"

 

And for users a password crypt file ‘filecrypt’

 

DEFAULT Autz-Type := filecrypt

 

The problem is that when doing EAP-TTLS authentication if I set the mac address of one of the allowed card as the login name I am authenticated!!!

Is there a way to prevent this somehow?  To specify that Auth-Type:=Accept is only for non EAP authentication ???

 

 

Thanks for help

 

Benoît Bianchi.