EAP Session resumption && reply attributes
Alan Buxey
A.L.M.Buxey at lboro.ac.uk
Sun Jan 17 21:22:35 CET 2010
Hi,
> One thing to remember, is for *your* users roaming at other universities
> to remember to remove the reply:User-Name attribute to protect the
> guilty. :)
the best thing to do for this is to create a new virtual server - eg 'eduroam' -
which is identical to your normal stuff EXCEPT that it doesnt return VLANs etc.
just ensure that this virtual server is only called when a request comes from
the national proxies (or perhaps, just not one of your own NAS - eg properly
assign your own NAS to their own internal virtual server) - et voila...you
cannot accidentally mess up remote connections etc
alan
More information about the Freeradius-Users
mailing list