eap/tls and central users file
Norbert Wegener
nw at sbs.de
Mon Oct 17 19:53:56 CEST 2005
Alan DeKok wrote:
>Norbert Wegener <nw at sbs.de> wrote:
>
>
>>Would it be possible, that fr only validates the certificates and
>>proxies the CN as username to a central fr, that has the complete user db?
>>If so, how could it be achieved?
>>
>>
>
> That's a bit awkward, because the proxied requests won't have any
>authentication data.
>
>
> A different solution would be to proxy *all* requests centrally,
>
Thanks.
but that's what I want to avoide, because eap/tls authentication causes
much more traffic than simple pap/chap etc.
> or
>copy some of the database information from the central site to the
>remote sites.
>
>
And that to avoid was the main reason for the question.
Norbert Wegener
> Alan DeKok.
>
>-
>List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
>
>
More information about the Freeradius-Users
mailing list