[RADIATOR] EAP-SIM Authentication
M P
antmtp at hotmail.com
Mon Aug 22 20:59:49 CDT 2011
Hello Heikki,
Thank you very much.
> Date: Mon, 22 Aug 2011 19:35:34 +0300
> From: hvn at open.com.au
> To: antmtp at hotmail.com
> CC: radiator at open.com.au
> Subject: Re: [RADIATOR] EAP-SIM Authentication
>
> On 08/22/2011 06:53 AM, M P wrote:
>
> Hello Marvin,
>
> > In an EAP-SIM based authentication, when the Radiator receives an Access-Request, which attributes does the mobile number and the IMSI belongs to?
>
> IMSI is usually in the username part of User-Name attribute. For example
> 154321067890123456 at wlan.mnc001.mcc123.3gppnetwork.org
>
> I have not seen the mobile number in the requests.
>
> Note that the RFC says the User-Name or EAP Identity may be the IMSI,
> pseudonym (TMSI) or a fast reconnect temporary username. There seems to
> be to be a separate method (EAP-SIM specific attribute) for the
> authenticating RADIUS to request the real identity.
>
> You may want to see http://tools.ietf.org/html/rfc4186#section-4.2 for
> more about the identity and IMSI.
>
> Thanks!
> Heikki
>
> --
> Heikki Vatiainen <hvn at open.com.au>
>
> Radiator: the most portable, flexible and configurable RADIUS server
> anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
> Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
> TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
> DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
> NetWare etc.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.open.com.au/pipermail/radiator/attachments/20110823/7f9ad910/attachment.html
More information about the radiator
mailing list