Freeradius 2 , TTLS/PAP, multiples questions
Alan DeKok
aland at deployingradius.com
Fri Apr 17 16:20:07 CEST 2009
Jérôme BERTHIER wrote:
> Sorry. It means that when the NAS asks for reauthentification (after
> reauth-period timeout has expired), clients won't stop trying to
> re-connect using session resumption option again and again....
> Here, an extract from freeradius debug :
> [ttls] eaptls_process returned 3
> [ttls] Skipping Phase2 due to session resumption
> [ttls] FAIL: Forcibly stopping session resumption as it is not allowed.
What's "reauth-period"?
If the session cache is enabled, then the entries should be deleted
after "lifetime" hours. Once the entries are deleted, they will not be
in the cache, and attempts to re-used the cached session should cause a
re-negotiation.
Alan DeKok.
More information about the Freeradius-Users
mailing list