rlm_eap_pwd

Synopsis

The eap_pwd module implements EAP-PWD authentication. It is a submodule of eap and cannot be used on its own.

EAP-PWD authentication requires the Cleartext-Password for authentication.

Processing Sections

None. This is a sub-module of eap, and cannot be used on its own.

Expansions

None.

Directives

fragment_size
Syntax

fragment_size = integer

Default

1020

Description

This directive has the same meaning as for EAP-TLS

group
Syntax

group = integer

Default

19

Description

The cryptographic group for the PWD authentication. The supported groups are 19, 20, 21, 25, and 26.

server_id
Syntax

server_id = string

Default

theserver@example.com

Description

The server identifier sent to the supplicant.

virtual_server
Syntax

virtual_server = string

Default

inner-tunnel

Description

The virtual server that determines the known good password for the user.

Note
Unlike EAP-TLS, only the authorize section of the virtual server is processed.