Possibility of bypassing hostapd's "Radius Client"

Jouni Malinen j
Mon Sep 19 09:46:51 PDT 2011

On Mon, Sep 19, 2011 at 07:18:23PM +0530, uday kiran wrote:
> I am using one application which runs RADIUS client and IEEE 802.1x EAPOL
> authenticator. I am using this application to authenticate the "wired" users
> connected to ethernet ports . At the same time , i want to run hostapd to
> authenticate the "wi-fi" users too ( I have wired and wi-fi ports on my
> machine).
> I want to avoid the redundency of running two RADIUS clients and two EAPOL
> authenticators ( Just came to know that my application also got one EAPOL
> authenticator).

How much do you want to avoid that redundancy? Like I mentioned, there
should be no problems in running two RADIUS clients on the same host and
as such, you should be able to already use the design as-is..

> Hence I want to detach that part of hostapd , so that I can use my
> application's RADIUS client and EAPOL code  for authenticating both wired
> and wireless users.
> Is that a good approach ? Awaiting your comments ?

Depends on how much you are interested in doing additional work in
hostapd to make it possible to use another RADIUS client. I don't see
enough justification for doing that, but you are obviously free to go
through that exercise if you think it is needed.

Jouni Malinen                                            PGP id EFC895FA

More information about the Hostap mailing list