Question regarding the direction of eap_tls: <<< recv and eap_tls: >>> send
Alan DeKok
aland at deployingradius.com
Sat Nov 14 23:05:22 CET 2020
On Nov 14, 2020, at 4:37 PM, Eric Nguyen <ericvunguyen at gmail.com> wrote:
> I used eapol_test as a client/authenticator against FreeRADIUS 3.0.21.
>
> - If I set the following parameters in the FreeRADIUS eap file, espol_test
> will results in a failure.
> In this case, "eap_tls: <<< recv TLS 1.3" looks like an exchange from
> FreeRADIUS to eapol_test (SERVER -> CLIENT):
>
> tls_min_version = "1.3"
> tls_max_version = "1.3"
TLS 1.3 is not supported for any EAP method. There is no standard defined for using TLS 1.3. Don't use TLS 1.3.
Alan DeKok.
More information about the Freeradius-Users
mailing list