EAP TTLS Inner Tunnel
Connor Herring
connorrjherring at gmail.com
Thu Sep 12 14:11:28 UTC 2024
Hi All,
I've got my setup working so that the outer auth is dealt with by EAPTTLS
and then the inner is dealt with by either PAP/MD5 depending on what device
the client is using (Windows doesn't seem to support MD5 and Apple doesn't
seem to support PAP without extra config).
My question is regarding the /mods-available/inner-eap module. My setup
seems to be working but finding out that this module exists has made me
question that fact. Instead of configuring inner tunnel within the
/mods-enabled/eap file (e.g. setting the virtual server to your inner
tunnel server and then configuring the inner tunnel virtual server in
/sites-enabled/inner-tunnel etc.) do you HAVE to use
/mods-available/inner-eap for this kind of setup to work correctly?
When reading the documents I wasn't sure if the inner-eap module was going
to be more heavily relied upon in v4.0.0 (I'm on v3.2.1) but wasn't
necessary at the moment?
Kind regards,
Connor
More information about the Freeradius-Users
mailing list