Fwd: (RADIATOR) Troubles with 802.1x authorization of M$ Windows XP

[Jan Tomasek]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hello Hugh,
thanks for quick response.

> As Mike says below, your Realm DEFAULT clause is catching the inner
> request, not the correct Handler.
>
> You should not mix Realms and Handlers in the same configuration file
> for this reason.

I do not uderstand much Handlers vs. Realms isue. I used realms because that
is way I need Radiator behave.

Now I upated configuration to use only Handlers, everything looks to works
fine. Including forwarding non-local request to proxy server	.

I'm sending to list again my configuration, maybe somebody else might find it
usefull.

I want ask about two problems I do not uderstand to:

1) In <Handler Realm=/^cesnet\.cz$|^radius1\.cesnet\.cz$/> I have to place
   RewriteUsername outside AuthBy block and in <Handler TunnelledByTTLS=1> and
   <Handler TunnelledByPEAP=1> I have to place RewriteUsername inside AuthBy
   block. Otherwise it simpy won't work.

2) Isn't there some way how to simplify my configuration? I've there tree very
   simililar blocks. Isn't there some way for including file at least?

- --
- --------------------------------------------------------------
Jan Tomasek aka Semik           work: CESNET, z.s.p.o.
http://www.tomasek.cz/                Zikova 4, 160 00 Praha 6
                                      Czech Republic
phone(work): +420 2 2435 5279         http://www.cesnet.cz/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFA490x79++DGvj6tMRAuXIAKCJSFRpGYG/vkbpeS+FEcEsJ83bGgCgoB5c
sCZVPf9IgyVKC5ECcK8Was4=
=Uvim
-----END PGP SIGNATURE-----
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: radius.cfg
URL: <http://www.open.com.au/pipermail/radiator/attachments/20040701/070e866c/attachment.ksh>