27 Sep
2005
27 Sep
'05
2:01 p.m.
Ben Dowling <bendowling@lineone.net> wrote:
I still haven't figured this one out, and would really appreciate some help. I've tried playing around with the DEFAULT profile in the users file, giving it Auth-Type: Reject, but certificates with CN not in the database are still authenticated. How do I get freeradius to check for the username in mysql with EAP-TLS?
I don't recall if you can get at the CN from the certificate. Maybe try keying off of the User-Name? Alan DeKok.