Using X.509 Cert. subject and issuer for authorization with EAP-TLS

Arnaud Ebalard arno at
Sun Apr 13 12:29:41 CEST 2008

> Regarding the identity privacy argument: usually, the certificate leaks
> more information (DN, issuer, ...) than the User-Name itself. As it sent
> in clear during the TLS handshake, there is simple way to provide
                pre-coffee bug : should be "no simple way"

More information about the Freeradius-Devel mailing list