Freeradius 2 , TTLS/PAP, multiples questions

Alan DeKok aland at deployingradius.com
Fri Apr 17 16:20:07 CEST 2009


Jérôme BERTHIER wrote:
> Sorry. It means that when the NAS asks for reauthentification (after
> reauth-period timeout has expired), clients won't stop trying to
> re-connect using session resumption option again and again....
> Here, an extract from freeradius debug :
> [ttls] eaptls_process returned 3
> [ttls] Skipping Phase2 due to session resumption
> [ttls] FAIL: Forcibly stopping session resumption as it is not allowed.

  What's "reauth-period"?

  If the session cache is enabled, then the entries should be deleted
after "lifetime" hours.  Once the entries are deleted, they will not be
in the cache, and attempts to re-used the cached session should cause a
re-negotiation.

  Alan DeKok.



More information about the Freeradius-Users mailing list