TTLS use_tunneled_reply and Mac OSX

Alexander Clouter alex at
Wed Jul 20 13:49:58 CEST 2011

Scott Armitage <S.P.Armitage at> wrote:
> I have noticed that when authenticating using TTLS/MSCHAPv2 that the 
> outer-identity is used in the RADIUS reply packet even if the 
> use_tunneled_reply is set to yes for TTLS in eap.conf
> Does anyone know the reason for this?
TLS session resumption?  Also TTLS/MSCHAPv2 is possibly for you actually 
TTLS/EAP-MSCHAPv2 which means you get in effect an inner-inner tunnel if 
I remember correctly.

Have a nosey at:


Alexander Clouter
.sigmonster says: Rubber bands have snappy endings!

More information about the Freeradius-Users mailing list