# by the EAP module, for informational purposed only.
#
ATTRIBUTE EAP-Type 1018 integer
+ATTRIBUTE EAP-TLS-Require-Client-Cert 1019 integer
#
# Integer Translations
VALUE EAP-Type DeviceConnect-EAP 40
VALUE EAP-Type EAP-SPEKE 41
VALUE EAP-Type EAP-MOBAC 42
+
+#
+# This says TLS, but it's only valid for TTLS & PEAP.
+# EAP-TLS *always* requires a client certificate.
+#
+VALUE EAP-TLS-Require-Client-Cert No 0
+VALUE EAP-TLS-Require-Client-Cert Yes 1
#define PW_POST_PROXY_TYPE 1016
#define PW_PRE_ACCT_TYPE 1017
#define PW_EAP_TYPE 1018
+#define PW_EAP_TLS_REQUIRE_CLIENT_CERT 1019
#define PW_USER_CATEGORY 1029
#define PW_GROUP_NAME 1030