#}
#
+# This is a sample entry for iPass.
+#
+#realm IPASS {
+# type = radius
+# authhost = ipass.server.hostname:11812
+# accthost = ipass.server.hostname:11813
+#
+ # The shared secret here must be the same
+ # value as the secret of the NetServer found in the
+ # /usr/ipass/raddb/clients file of your NetServer software.
+# secret = mysecret
+# nostrip
+#}
+
+#
# This realm is for requests which don't have an explicit realm
# prefix or suffix. User names like "bob" will match this one.
#
leap {
}
- ## EAP-TLS is highly experimental EAP-Type at the moment.
- # Please give feedback on the mailing list.
+ ## EAP-TLS
+ #
+ # To generate certificates, see: ../scripts/CA.all
+ #
+ # The documents on http://www.freeradius.org/doc
+ # are old, but are helpful.
+ #
#tls {
# private_key_password = password
# private_key_file = /path/filename
# 'realm/username'
#
# Using this entry, IPASS users have their realm set to "IPASS".
- realm realmslash {
+ realm IPASS {
format = prefix
delimiter = "/"
}
# Look for IPASS style 'realm/', and if not found, look for
# '@realm', and decide whether or not to proxy, based on
# that.
-# realmslash
+# IPASS
suffix
#
#
# Accounting requests are generally proxied to the same
# home server as authentication requests.
-# realmslash
+# IPASS
suffix
#
# attr_filter
#
- # If you are proxing LEAP, you MUST configure the EAP
+ # If you are proxying LEAP, you MUST configure the EAP
# module, and you MUST list it here, in the post-proxy
# stage.
#