inner/outer authentication problem in 2.0.2

Gopinath Reddy N gnreddy at gmail.com
Tue Jun 17 12:56:11 CEST 2008


Thanks Alan. This works.

On Thu, Jun 12, 2008 at 11:02 AM, Alan DeKok <aland at deployingradius.com>
wrote:

> Gopinath Reddy N wrote:
> > But by way of hack if user knows some other valid user name in the
> > system he can use that as outer identity and get the policy setting of
> > that user. So to avoid that Iam just thinking is there a way I can come
> > out of this situation in freeradius
>
>  Yes.  That's why the inner and outer sessions are in different virtual
> servers.  Put the policy into the virtual server for the inner tunnel,
> and not for the outer session.
>
>  Alan DeKok.
>  -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20080617/fb5f9109/attachment.html>


More information about the Freeradius-Users mailing list