Annotation of embedaddon/strongswan/testing/tests/swanctl/rw-eap-sim-radius/description.txt, revision 1.1.1.1
1.1 misho 1: The roadwarriors <b>carol</b> and <b>dave</b> set up a connection to gateway <b>moon</b>.
2: At the outset the gateway authenticates itself to the clients by sending
3: an IKEv2 <b>digital signature</b> accompanied by an X.509 certificate.
4: <p/>
5: Next the clients use the GSM <i>Subscriber Identity Module</i> (<b>EAP-SIM</b>)
6: method of the <i>Extensible Authentication Protocol</i> to authenticate themselves.
7: In this scenario triplets from the file <b>/etc/ipsec.d/triplets.dat</b> are used
8: instead of a physical SIM card.
9: <p/>
10: The gateway forwards all EAP messages to the RADIUS server <b>alice</b>
11: which also uses static triplets.
12: <p/>
13: The roadwarrior <b>dave</b> sends wrong EAP-SIM triplets. As a consequence
14: the RADIUS server <b>alice</b> returns an <b>Access-Reject</b> message
15: and the gateway <b>moon</b> sends back <b>EAP_FAILURE</b>.
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to description.txt CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / strongswan / testing / tests / swanctl / rw-eap-sim-radius