Is it possible to have different TLS configurations per EAP type?

Matthew Newton mcn4 at
Thu Jan 29 22:12:38 CET 2015

On Thu, Jan 29, 2015 at 03:48:58PM -0500, Louis Munro wrote:
> So I am trying to write a configuration that would support two eap configurations.

What does your User-Name looks like with eap-tls? Often
"host/<hostname>", in which case you could do something like

if (User-Name =~ /^host\//) {
else {

You can also test EAP-Message with a regex to find which eap-type
is being used - but again might be too late in the negotiations to
be of use.


Matthew Newton, Ph.D. <mcn4 at>

Systems Specialist, Infrastructure Services,
I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom

For IT help contact helpdesk extn. 2253, <ithelp at>

More information about the Freeradius-Users mailing list