User Authenticated even when username not given in USERS file (EAP-TLS)

[Alan DeKok]

Prateek Kumar wrote:
> I am using EAP-TLS for authentication, USERs are getting authenticated
> even when I have not defined the user in USERS file.

  That's how EAP-TLS works.  You issued a client certificate.
Possession of the client certificate means that the user is authenticated.

> 1. Is this behavior normal.

  Yes.

> 2. Should I have to use DEFAULT Auth-Type := Reject at the end of users
> file ?

  No.

  Alan DeKok.