EAP and automatically authenticating users

David Peterson davidp at wirelessconnections.net
Thu May 17 15:49:27 CEST 2012


Would you put the reply in there as well for Framed-Filter-Id?


-----Original Message-----
freeradius-users-bounces+davidp=wirelessconnections.net at lists.freeradius.org
[mailto:freeradius-users-bounces+davidp=wirelessconnections.net at lists.freera
dius.org] On Behalf Of Phil Mayers
Sent: Thursday, May 17, 2012 8:34 AM
To: freeradius-users at lists.freeradius.org
Subject: Re: EAP and automatically authenticating users

On 17/05/12 12:18, David Peterson wrote:
> They are currently using EAP-TTLS. I tried to add something in last 
> night but either the lateness of the evening or my skills were not up 
> to par. Where would you add the access-accept?

Something like this in "sites-available/inner-tunnel":

authorize {
   # check the username, and also check the request is PAP
   # i.e. there's a User-Password sent from the client
   if ((User-Name == permit) && (User-Password)) {
     update control {
       Auth-Type := Accept

There are other variants; the list of users could be in SQL, LDAP, files,
List info/subscribe/unsubscribe? See

More information about the Freeradius-Users mailing list