eap.conf
eap { default_eap_type = ttls timer_expire = 60 ignore_unknown_eap_types = yes cisco_accounting_username_bug = no md5 { } leap { } gtc { auth_type = PAP } tls { private_key_password = pwd-prive private_key_file = ${raddbdir}/certs/radius.grenoble.cnrs.fr.key certificate_file = ${raddbdir}/certs/radius.grenoble.cnrs.fr.crt CA_file = ${raddbdir}/certs/CNRS.crt dh_file = ${raddbdir}/certs/dh random_file = ${raddbdir}/certs/random fragment_size = 1024 include_length = yes check_cert_cn = %{User-Name} } ttls { default_eap_type = md5 copy_request_to_tunnel = yes use_tunneled_reply = yes } peap { default_eap_type = mschapv2 copy_request_to_tunnel = yes use_tunneled_reply = yes proxy_tunneled_request_as_eap = yes } mschapv2 { } }