20 Apr
2016
20 Apr
'16
9:03 a.m.
On Apr 20, 2016, at 5:18 AM, yolanda3000@freenet.de wrote:
I want to test a supplicant. I'm looking for a way to restrict the allowed authentication types per user. Only one special authentication type per user. I know that it is a stupid thing to do, but I need it for testing.
The best way is to force a reject if any other authentication method is used. You can't really force one method, because the client can NAK any method you choose, and pick another one. authorize { ... eap if ((User-Name == "user1") && (EAP-Type != EAP-TLS)) { reject } ... } Alan DeKok.