eap_ttls not setting 'FreeRADIUS-Proxied-To'
Arran Cudbard-Bell
a.cudbardb at freeradius.org
Wed Jan 13 16:17:58 CET 2016
> On 12 Jan 2016, at 19:04, David Lord <d.lord at its.uq.edu.au> wrote:
>
> On 13 Jan 2016, at 9:37 AM, Alan DeKok <aland at deployingradius.com> wrote:
>>
>> On Jan 12, 2016, at 6:22 PM, David Lord <d.lord at its.uq.edu.au> wrote:
>>
>> ... whatever mail software you're using, please fix it. It mangles quoting so it's almost impossible to tell what's going on.
>
> Sorry, Apple Mail. Switched to plain text and replies look better in outlook web now. Fixed?
>
>>
>>> Okay, I’d love to do that. Would appreciate input on this architecture.
>>
>> I gave input.
>>
>> Just determine which rules belong in the "default" virtual server, and while ones belong in the "inner-tunnel" virtual server.
>>
>> Then... write the appropriate rules in the correct server.
>>
>>> The other branch of this port uses eduroam_inner, eduroam_IDP and eduroam_SP virtual servers, but I’ve been having trouble getting the right attributes forwarded.
>>> In theory IDP is exposed to the national roaming operator and SP is for our campus wifi, and SP forwards auth to IDP or the NRO. Is that sensible?
>>
>> I have no idea. Please explain using english, and not tons of acronyms.
>>
>
> Oops, too many eduroam acronyms. I’ve seen Alan Buxey use NRO recently but that was a different mailing list.
I blame project moonshot :P
I know IDP and SP, but what's a NRO?
-Arran
Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS development team
FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 872 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20160113/7e43f4e3/attachment.sig>
More information about the Freeradius-Users
mailing list