1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
|
--- a/raddb/radiusd.conf.in
+++ b/raddb/radiusd.conf.in
@@ -436,8 +436,8 @@
# member. This can allow for some finer-grained access
# controls.
#
-# user = radius
-# group = radius
+ user = radius
+ group = radius
# Core dumps are a bad thing. This should only be set to
# 'yes' if you're debugging a problem with the server.
--- a/raddb/sites-available/default
+++ b/raddb/sites-available/default
@@ -343,9 +343,9 @@
# for the many packets that go back and forth to set up TTLS
# or PEAP. The load on those servers will therefore be reduced.
#
- eap {
- ok = return
- }
+# eap {
+# ok = return
+# }
#
# Pull crypt'd passwords from /etc/passwd or /etc/shadow,
@@ -486,7 +486,7 @@
#
# Allow EAP authentication.
- eap
+# eap
#
# The older configurations sent a number of attributes in
@@ -792,7 +792,7 @@
# Insert EAP-Failure message if the request was
# rejected by policy instead of because of an
# authentication failure
- eap
+# eap
# Remove reply message if the response contains an EAP-Message
remove_reply_message_if_eap
@@ -861,7 +861,7 @@
# hidden inside of the EAP packet, and the end server will
# reject the EAP request.
#
- eap
+# eap
#
# If the server tries to proxy a request and fails, then the
--- a/raddb/sites-available/inner-tunnel
+++ b/raddb/sites-available/inner-tunnel
@@ -116,9 +116,9 @@
# for the many packets that go back and forth to set up TTLS
# or PEAP. The load on those servers will therefore be reduced.
#
- eap {
- ok = return
- }
+# eap {
+# ok = return
+# }
#
# Read the 'users' file
@@ -227,7 +227,7 @@
#
# Allow EAP authentication.
- eap
+# eap
}
######################################################################
@@ -367,7 +367,7 @@
# hidden inside of the EAP packet, and the end server will
# reject the EAP request.
#
- eap
+# eap
#
# If the server tries to proxy a request and fails, then the
|