Additional EAP-TLS Logging Option

Alan DeKok aland at
Fri Aug 27 21:51:22 CEST 2010

Ross, Michael wrote:
> Are there any thoughts about adding the patch from the 8/16 email to the FreeRADIUS baseline? 

  Sorry for not responding earlier.  A variant of the patch has been
added.  See the v2.1.x branch on

  The patch creates client/server attributes from the certificate
fields.  These attributes can be used for anything: policies, *or* logging.

  This makes it slightly more complex to set up logging like it was in
your patch.  But IMHO, it's a more correct approach.  The TLS module
should do minimal logging, but it should enable you to do any logging
you want.  The code in git does that.

  Alan DeKok.

More information about the Freeradius-Devel mailing list