On Fri, Sep 7, 2012 at 8:03 PM, Mihajlo Joksimovic <mihajlo.joksimovic@adfinis-sygroup.ch> wrote:
rad_recv: Access-Request packet from host 10.119.12.3 port 1178, id=17, length=199
EAP-Message = 0x0200001501646f6d696e697175652e6d6f747a6574
rlm_ldap: - authorize
what version is this? AFAIK the debug log for 2.x does not look like this. If you're still using 1.x, upgrade.
rlm_ldap: performing user authorization for dominique.motzet
If it's EAP you shouldn't need to use authorize in the outer tunnel So again, what version of FR did you use? What changes have you made? The default configuration should handle EAP correctly. You just need to edit sites-available/inner-tunnel to handle the inner tunnel correctly (e.g. by using LDAP for authorization) -- Fajar