EAP-TTLS/PAP with realm - <no User-Password attribute>
A.L.M.Buxey at lboro.ac.uk
A.L.M.Buxey at lboro.ac.uk
Mon Mar 14 11:10:24 CET 2016
Hi,
you are proxying the request (entry in proxy.conf) to local....with default
options - so its stripping the realm. the failure then occurs because the
realm doesnt exist and the server is looking at auth options and finding none
with suitable password
> ++[eap] = updated
> ++[files] = noop
> ++[expiration] = noop
> ++[logintime] = noop
> [pap] WARNING! No "known good" password found for the user. Authentication
> may fail because of this.
> ++[pap] = noop
what you probably want is 'nostrip' in the proxy definition along with suitable
auth methods in the inner-tunnel virtual server
alan
More information about the Freeradius-Users
mailing list