RFC 3579 and Access-Accepts
Josh Howlett
Josh.Howlett at ja.net
Wed Sep 19 14:01:26 CEST 2007
Hi Stefan,
> Whereas RFC 3579 , chapter 2.6.5 says:
> "An EAP-Message/EAP-Request/Notification SHOULD NOT be
> included within an Access-Accept or Access-Reject packet."
I think this is a case of mis-reading the (confusing?) notation used by
the RFC.
What the RFC is saying is that you are not permitted to include a
Notification within an EAP-Request within an EAP-Message within an
Access-Accept.
It's not saying you're not allowed to include an EAP-Message attribute
_per se_.
FWIW, I don't think it would be possible to implement a compliant EAP
method without including an EAP-Message in the Access-Acccept; you need
to return an EAP-Success or EAP-Failure, and IIRC you can't do that in
an Access-Challenge.
josh.
JANET(UK) is a trading name of The JNT Association, a company limited
by guarantee which is registered in England under No. 2881024
and whose Registered Office is at Lumen House, Library Avenue,
Harwell Science and Innovation Campus, Didcot, Oxon OX11 0SG
More information about the Freeradius-Users
mailing list