Intel PEAP client "Roaming Identity"
Alan DeKok
aland at ox.org
Thu Sep 15 19:54:55 CEST 2005
Ben Thompson <bt4 at york.ac.uk> wrote:
> Could anyone advise me whether it is possible to configure my server so
> that the actual username used get's logged in the accounting records
> instead of this roaming identity string?
Configure peap{} & ttls{} with "use_tunneled_reply = yes".
Add the following to the top of the "users" file:
DEFAULT FreeRADIUS-Proxied-To == 127.0.0.1
User-Name = "%{User-Name}",
Fall-Through = Yes
This will send the inner tunnel user name back to the AP, which is
*supposed* to then use it in accounting packets.
Alan DeKok.
More information about the Freeradius-Users
mailing list