[sorry for sending the previous email without a subject] When I am goind TTLS/MSChapv2 with wrong username/password comination, I found the FreeRadius server is sending out EAP-Failure message to the Security Supplicant. My question is according to MSChapv2 RFC, a MSChapv2 Failure packet is also supposed to be sent out. Why the MSChapv2 Failure is not sent? Thanks, Andrew -- http://www.fastmail.fm - IMAP accessible web-mail
Andrew wrote:
When I am goind TTLS/MSChapv2 with wrong username/password comination, I found the FreeRadius server is sending out EAP-Failure message to the Security Supplicant. My question is according to MSChapv2 RFC, a MSChapv2 Failure packet is also supposed to be sent out. Why the MSChapv2 Failure is not sent?
Because sending EAP-Failure works just as well. Is this just a theoretical question, or is there some real-world problem with this behavior? Alan DeKok. -- http://deployingradius.com - The web site of the book http://deployingradius.com/blog/ - The blog
participants (2)
-
Alan DeKok -
Andrew