apparently it works now
Signed-off-by: Jens Langhammer <jens@goauthentik.io>
This commit is contained in:
Jens Langhammer
@ -12,6 +12,7 @@ import (
|
|||||||
"goauthentik.io/internal/outpost/radius/eap/debug"
|
"goauthentik.io/internal/outpost/radius/eap/debug"
|
||||||
"goauthentik.io/internal/outpost/radius/eap/protocol"
|
"goauthentik.io/internal/outpost/radius/eap/protocol"
|
||||||
"layeh.com/radius"
|
"layeh.com/radius"
|
||||||
|
"layeh.com/radius/rfc2865"
|
||||||
"layeh.com/radius/vendors/microsoft"
|
"layeh.com/radius/vendors/microsoft"
|
||||||
)
|
)
|
||||||
|
|
||||||
@ -100,6 +101,12 @@ func (p *Payload) Handle(stt any) (protocol.Payload, *State) {
|
|||||||
},
|
},
|
||||||
ClientAuth: tls.RequireAnyClientCert,
|
ClientAuth: tls.RequireAnyClientCert,
|
||||||
Certificates: certs,
|
Certificates: certs,
|
||||||
|
CipherSuites: []uint16{
|
||||||
|
tls.TLS_RSA_WITH_3DES_EDE_CBC_SHA,
|
||||||
|
tls.TLS_RSA_WITH_RC4_128_SHA,
|
||||||
|
tls.TLS_RSA_WITH_AES_128_CBC_SHA,
|
||||||
|
// tls.TLS_RSA_WITH_RC4_128_MD5,
|
||||||
|
},
|
||||||
})
|
})
|
||||||
go func() {
|
go func() {
|
||||||
defer cancel()
|
defer cancel()
|
||||||
@ -142,6 +149,9 @@ func (p *Payload) Handle(stt any) (protocol.Payload, *State) {
|
|||||||
ModifyPacket: func(p *radius.Packet) *radius.Packet {
|
ModifyPacket: func(p *radius.Packet) *radius.Packet {
|
||||||
p.Code = radius.CodeAccessAccept
|
p.Code = radius.CodeAccessAccept
|
||||||
microsoft.MSMPPERecvKey_Set(p, st.MPPEKey[:32])
|
microsoft.MSMPPERecvKey_Set(p, st.MPPEKey[:32])
|
||||||
|
microsoft.MSMPPESendKey_Set(p, st.MPPEKey[64:64+32])
|
||||||
|
rfc2865.UserName_SetString(p, "foo")
|
||||||
|
rfc2865.FramedMTU_Set(p, rfc2865.FramedMTU(1400))
|
||||||
return p
|
return p
|
||||||
},
|
},
|
||||||
}, st
|
}, st
|
||||||
|
|||||||
Reference in New Issue
Block a user