EAP-TLS reject if CN not in MySQL
Alan DeKok
aland at ox.org
Tue Sep 27 20:01:58 CEST 2005
Ben Dowling <bendowling at lineone.net> wrote:
> I still haven't figured this one out, and would really appreciate some
> help. I've tried playing around with the DEFAULT profile in the users
> file, giving it Auth-Type: Reject, but certificates with CN not in the
> database are still authenticated. How do I get freeradius to check for
> the username in mysql with EAP-TLS?
I don't recall if you can get at the CN from the certificate. Maybe
try keying off of the User-Name?
Alan DeKok.
More information about the Freeradius-Users
mailing list