[RADIATOR] Problem rewriting inner username with PEAP-MSCHAPV2
Matti Saarinen
mjsaarin at cc.helsinki.fi
Tue Dec 23 02:08:31 CST 2008
Michael Harlow wrote:
> I'm trying to work our how to re-write the inner username for a TTLS
> or PEAP request.
>
> [...]
>
> It seems to be working for TunnelledByTTLS/PAP, but not for
> TunnelledByTTLS/MSCHAP-V2 and TunnelledByPEAP/MSCHAP-V2. Am I missing
> something?
I have understood that MSCHAPv2 packets contain checksum that is
generated by the supplicant. Therefore the packets cannot be altered by
any intermediate RADIUS servers.
--
- Matti -
More information about the radiator
mailing list