[RADIATOR] Unsupported EAP Response 26
hvn at open.com.au
Tue Sep 10 16:31:35 UTC 2019
On 10/09/2019 18.15, michael.filz at zv-extern.fraunhofer.de wrote:
> <Handler TunnelledByPEAP=1,EAP-Message=/<REDACTED>/i>
I recommend changing this to just: <Handler TunnelledByPEAP=1>
Because PEAP can only carry EAP, the inner request is always built with
EAP-Message. Based on the log the redacted regexp did not match and it
fell back to the other Handler. While this allowed the final ack for EAP
26 to happen, it is not allowed any longer.
Heikki Vatiainen <hvn at open.com.au>
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, TACACS+, PAM, Active Directory,
EAP, TLS, TTLS, PEAP, WiMAX, RSA, Vasco, Yubikey, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS, etc.
More information about the radiator