Hi Heikki,
Am 2011-09-14 08:54, schrieb Heikki Vatiainen:
> On 09/13/2011 03:38 PM, Alexander Hartmaier wrote:
>> I found out what is required to make 802.1x work with WPA2-Enterprise + AES:
>> the AuthBy of the outer handler needs AutoMPPEKeys configured so that
>> the Cisco WLC generates the PMK
Hello list,
I try to send a SAML assertion as an attribute in a Access-Accept
packet, but packet is too long (when using UDP). Is there a possibility
to distribute content of Access-Accept packet to several packets?
Your help is appreciated,
Markus Grandpre, RZ Uni Konstanz
Radiator configurati
On 09/14/2011 02:41 PM, Markus Ludwig Grandpre wrote:
Hello Markus,
> I try to send a SAML assertion as an attribute in a Access-Accept
> packet, but packet is too long (when using UDP). Is there a possibility
> to distribute content of Access-Accept packet to several packets?
Try adding three S
On 09/14/2011 02:37 PM, Alexander Hartmaier wrote:
Hello Alexander,
>> At that time I thought there will be a problem with server failing to
>> prove to the client it knows the client's credentials. This is needed
>> with MS-CHAP-V2 and normally causes PEAP failure.
> No, I haven't invested any
Hello Heikki
> Try adding three SAML-AAA-Assertion attributes instead of one. Your
> attribute seems to be over 600 characters which is way more than the 8
> bit attribute length field can carry.
>
> The receiver may be able to concatenate the attributes back into one value.
Yes, the receiver is
On 09/14/2011 03:19 PM, Markus Ludwig Grandpre wrote:
>> Try adding three SAML-AAA-Assertion attributes instead of one. Your
>> attribute seems to be over 600 characters which is way more than the 8
>> bit attribute length field can carry.
>>
>> The receiver may be able to concatenate the attribut
Heikki,
> Try this instead:
>
> AddToReply SAML-AAA-Assertion=part1,SAML-AAA-Assertion=part2, ...
>
> That is, use AddToReply only once but with multiple attributes.
This configuration as you have suggested:
AddToReply SAML-AAA-Assertion = urn:mace:incommon:osu.edu,
SAML-AAA-Assertion = canto
Hey Heikki
Thats great news ! .. I had one more question .. is it possible to hardcode
the sres and rand value for sim based auths in Radiator if we do not want to
use an HLR during our testing stage?
Thanx
Aman Arneja
On Mon, Sep 12, 2011 at 3:13 PM, Heikki Vatiainen wrote:
> On 08/24/2011 1
