eap-ttls/mschapv2 versus eap-peap/mschapv2 behaviour

Alan DeKok aland at deployingradius.com
Thu Jul 18 14:37:15 CEST 2013

Olivier Beytrison wrote:
> in authorize, when eap (eap_peap) return "handled", the ldap module is
> executed, and adds attributes to the reply.
> It the goes to authenticate and EAP is called again, but only eap and
> peap_mschapv2 are executed, not eap_peap.

  I'm not sure what that means.  There's EAP-MSCHAPv2, but not

  And EAP-MSCHAPv2 runs inside of PEAP.  So the code should always go

  Alan DeKok.

More information about the Freeradius-Devel mailing list