eap {
		default_eap_type = ttls
		timer_expire     = 60
		ignore_unknown_eap_types = yes
		cisco_accounting_username_bug = no
		md5 {
		}
		leap {
		}
		gtc {
			auth_type = PAP
		}
		tls {
			private_key_password = pwd-prive
			private_key_file = ${raddbdir}/certs/radius.grenoble.cnrs.fr.key
			certificate_file = ${raddbdir}/certs/radius.grenoble.cnrs.fr.crt
			CA_file = ${raddbdir}/certs/CNRS.crt
			dh_file = ${raddbdir}/certs/dh
			random_file = ${raddbdir}/certs/random
			fragment_size = 1024
			include_length = yes
			check_cert_cn = %{User-Name}
		}
		ttls {
			default_eap_type = md5
			copy_request_to_tunnel = yes
		   	use_tunneled_reply = yes
		}
		 peap {
			default_eap_type = mschapv2
			copy_request_to_tunnel = yes
			 use_tunneled_reply = yes
			proxy_tunneled_request_as_eap = yes
		}
		mschapv2 {
		}
	}