From 20ac631c95c1c1d399f7e43c9f971e24cab8dc6a Mon Sep 17 00:00:00 2001 From: aland Date: Fri, 3 Jun 2005 16:44:43 +0000 Subject: [PATCH] More docs for peap --- raddb/eap.conf | 19 ++++++++++++++++--- 1 file changed, 16 insertions(+), 3 deletions(-) diff --git a/raddb/eap.conf b/raddb/eap.conf index 8af54d5..453eabd 100644 --- a/raddb/eap.conf +++ b/raddb/eap.conf @@ -1,3 +1,4 @@ +# -*- text -*- # # Whatever you do, do NOT set 'Auth-Type := EAP'. The server # is smart enough to figure this out on its own. The most @@ -120,14 +121,14 @@ # http://www.dslreports.com/forum/remark,9286052~mode=flat # #tls { - # private_key_password = whatever - # private_key_file = ${raddbdir}/certs/cert-srv.pem + private_key_password = whatever + private_key_file = ${raddbdir}/certs/cert-srv.pem # If Private key & Certificate are located in # the same file, then private_key_file & # certificate_file must contain the same file # name. - # certificate_file = ${raddbdir}/certs/cert-srv.pem + certificate_file = ${raddbdir}/certs/cert-srv.pem # Trusted Root CA list # CA_file = ${raddbdir}/certs/demoCA/cacert.pem @@ -256,6 +257,18 @@ # as that is the default type supported by # Windows clients. # default_eap_type = mschapv2 + + # the PEAP module also has these configuration + # items, wjocj are the same as for TTLS. + # copy_request_to_tunnel = no + # use_tunneled_reply = no + + # When the tunneled session is proxied, the + # home server may not understand EAP-MSCHAP-V2. + # Set this entry to "no" to proxy the tunneled + # EAP-MSCHAP-V2 as normal MSCHAPv2. + # proxy_tunneled_request_as_eap = yes + #} # -- 2.1.4