diff options
| author | Andreas Steffen <andreas.steffen@strongswan.org> | 2010-08-16 18:32:00 +0200 |
|---|---|---|
| committer | Andreas Steffen <andreas.steffen@strongswan.org> | 2010-08-16 18:32:00 +0200 |
| commit | cf95e162f256b335579a1d9011d69d1cb641c2a3 (patch) | |
| tree | 11b77be37e63d9e3bca8a0f5365e9b9379fb2c1e /testing/tests/ikev2/rw-eap-ttls-phase2-piggyback/description.txt | |
| parent | 9ba53310ee357c68a6964dd23c1e52468baa7f1b (diff) | |
| download | strongswan-cf95e162f256b335579a1d9011d69d1cb641c2a3.tar.bz2 strongswan-cf95e162f256b335579a1d9011d69d1cb641c2a3.tar.xz | |
added ikev2/rw-eap-ttls-phase2-piggyback scenario
Diffstat (limited to 'testing/tests/ikev2/rw-eap-ttls-phase2-piggyback/description.txt')
| -rw-r--r-- | testing/tests/ikev2/rw-eap-ttls-phase2-piggyback/description.txt | 8 |
1 files changed, 8 insertions, 0 deletions
diff --git a/testing/tests/ikev2/rw-eap-ttls-phase2-piggyback/description.txt b/testing/tests/ikev2/rw-eap-ttls-phase2-piggyback/description.txt new file mode 100644 index 000000000..9624fa709 --- /dev/null +++ b/testing/tests/ikev2/rw-eap-ttls-phase2-piggyback/description.txt @@ -0,0 +1,8 @@ +The roadwarriors <b>carol</b> and <b>dave</b> set up a connection each to gateway <b>moon</b>. +The strong mutual authentication is based on <b>EAP-TTLS</b> only (without a separate IKEv2 +authentication) with the gateway being authenticated by a server certificate during the +EAP-TLS tunnel setup (phase1 of EAP-TTLS). This tunnel protects the ensuing weak client +authentication based on <b>EAP-MD5</b> (phase2 of EAP-TTLS). The server <b>moon</b> +piggybacks the tunneled EAP Identity request which starts phase2 of EAP-TTLS right onto +the TLS Finished message. <b>carol</b> presents the correct MD5 password and succeeds +whereas <b>dave</b> chooses the wrong password and fails. |