[RADIATOR] EAP-SIM Authentication
Heikki Vatiainen
hvn at open.com.au
Mon Aug 22 11:35:34 CDT 2011
On 08/22/2011 06:53 AM, M P wrote:
Hello Marvin,
> In an EAP-SIM based authentication, when the Radiator receives an Access-Request, which attributes does the mobile number and the IMSI belongs to?
IMSI is usually in the username part of User-Name attribute. For example
154321067890123456 at wlan.mnc001.mcc123.3gppnetwork.org
I have not seen the mobile number in the requests.
Note that the RFC says the User-Name or EAP Identity may be the IMSI,
pseudonym (TMSI) or a fast reconnect temporary username. There seems to
be to be a separate method (EAP-SIM specific attribute) for the
authenticating RADIUS to request the real identity.
You may want to see http://tools.ietf.org/html/rfc4186#section-4.2 for
more about the identity and IMSI.
Thanks!
Heikki
--
Heikki Vatiainen <hvn at open.com.au>
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.
More information about the radiator
mailing list