PEAP-MSCHAPv2: Cannot recover attributes from TLS Session Cache

Brian Julin BJulin at
Fri Aug 5 19:36:54 CEST 2016

Wussler, Doug wrote:

> Perhaps there is something else I don¹t understand but it does not look
> like ³use_tunneled_reply² in the eap module is really deprecated.  I can¹t
> get anything to work without that.

It's been removed in the 3.2.x devel branch.

I'm not sure how recent you have to be to get by without it, I was on 3.0.11
when I built that config.  Probably you'd need some of the other stanzas
in that post to pull values into/out of the session-state to pop them out
of the inner tunnel.

I'd post a fully worked example, but ours is a more complicated setup than
people really need since we have a 3rd party NAC sandwiched between
instances on our FreeRADIUS server.  (Not something I'd recommend
and I'd ditch this whole setup if I had the option.)

More information about the Freeradius-Users mailing list