Freeradius, Cisco SSC, eDirectory, EAP/(T)TLS Problem

Sven 'Darkman' Michels sven at darkman.de
Wed Mar 26 10:36:30 CET 2008


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi,

A.L.M.Buxey at lboro.ac.uk wrote:
> no, IGNORE the modules seciton - that just configures the modules.
> LOOK at your config
> 
> authorize {
>         preprocess
>         eap
>         ldap
> }
> authenticate {
>         eap
>         Auth-Type LDAP {
>                 ldap
>         }
> }
> 
> here we can CLEARLY see that EAP is done before LDAP

exactly, yeah, but the log says the other way around. I get a ldap
request, which succeeds and after that a tls NACK (due to no cert).
I would expect its the other way around, shouldn't it?

Regards,
Sven
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFH6hkeQoCguWUBzBwRAtkEAJwKsj5hFxre97zXRsZGaC4qWXsrSACeNeB3
rlf28a4T7Rk3IQqkRkEFx+Y=
=YXGM
-----END PGP SIGNATURE-----



More information about the Freeradius-Users mailing list