drn05r
commented
5 years ago radclient can send RADIUS accounting start and stop messages but does not do two phase encryption. (e.g. can do MSCHAPv2 but not outer encryption such PEAP or TTLS).
Open drn05r opened 5 years ago
drn05r
commented
5 years ago radclient can send RADIUS accounting start and stop messages but does not do two phase encryption. (e.g. can do MSCHAPv2 but not outer encryption such PEAP or TTLS).
Munge check_eapol script to allow it to send RADIUS accounting start and stop messages to keep iSolutions happy.
Cisco ISE allocates licenses for the number of active sessions established. If no RADIUS accounting is sent the session says active and uses a license for 5 days before it assumed to have ended. Eveyr time we run eapol_test for an @soton.ac.uk address we use a license for 5 days. This will mean we use 1000s if not 10,000s of licenses at any one time.