EAP-TLS issues

Riccardo Veraldi Riccardo.Veraldi at cnaf.infn.it
Wed Feb 7 16:06:31 CET 2007

I would like to authorize users based on their certificate.
Actually is only possible to look at CN using freeradius.
Is there any plan to support looking at the complete DN of
the certificate  so that is possible to check for Locality
field or other fileds inside hte certificate subject ?
Often hte CN is not a unique method, more than one
user can have same CN if the locality is different.
This happens in my situation for example.
IS there a way to check against other fields of the certificate
other than CN ?
Is it planned to be supported one day ?


More information about the Freeradius-Users mailing list