Updated through tag hostap_2_5 from git://w1.fi/hostap.git

[mech_eap.git] / libeap / hostapd / hostapd.eap_user

diff --git a/libeap/hostapd/hostapd.eap_user b/libeap/hostapd/hostapd.eap_user
index ac9a5d8..00edc95 100644 (file)
--- a/libeap/hostapd/hostapd.eap_user
+++ b/libeap/hostapd/hostapd.eap_user
@@ -48,6 +48,12 @@
 # TTLS-CHAP, TTLS-MSCHAP, TTLS-MSCHAPV2. TTLS-PAP and TTLS-CHAP require a
 # plaintext password while TTLS-MSCHAP and TTLS-MSCHAPV2 can use NT password
 # hash.
+#
+# Arbitrary RADIUS attributes can be added into Access-Accept packets similarly
+# to the way radius_auth_req_attr is used for Access-Request packet in
+# hostapd.conf. For EAP server, this is configured separately for each user
+# entry with radius_accept_attr=<value> line(s) following the main user entry
+# line.
 
 # Phase 1 users
 "user"         MD5     "password"
@@ -69,6 +75,9 @@
 "3"*           SIM,TTLS,TLS,PEAP,AKA
 "4"*           AKA,TTLS,TLS,PEAP,SIM
 "5"*           SIM,TTLS,TLS,PEAP,AKA
+"6"*           AKA'
+"7"*           AKA'
+"8"*           AKA'
 
 # Wildcard for all other identities
 *              PEAP,TTLS,TLS,SIM,AKA
@@ -89,3 +98,6 @@
 "3"*           SIM     [2]
 "4"*           AKA     [2]
 "5"*           SIM     [2]
+"6"*           AKA'    [2]
+"7"*           AKA'    [2]
+"8"*           AKA'    [2]