...
What RADIUS/802.1X is able to provide and not and in which situations.
Proxying
Varying implementation of features - Done
Re-auth, accounting, request from server, - Done
features supported by TP-Link NASes
...
Protocols used: EAP, MSCHAP, PEAP, TTLS, TLS
What EAP is - Done
Difference between auth systems: PEAP, TTLS, TLS
Difference between 802.1X and RADIUS and FreeRADIUS - DoneCertificates
Outer and inner identity and MAC/Windows support
Wifi keying, session timeout, etc. protections against MAC-spoofing, etc.
SSL tunnel
RADIUS is the protocol, it can be used for many purposes and many authentication methods can be used. - Done
Certificates
Outer and inner identity and MAC/Windows support
Wifi keying, session timeout, etc. protections against MAC-spoofing, etc.
SSL tunnel
Difference between 802.1X and RADIUS and FreeRADIUS - Done
What EAP is - Done
Varying implementation of features - Done
Re-auth, accounting, request from server, - Done
FreeRADIUS configuration files
...
mods-config - Folder containing more config related to modules and things like .sql files containing empty schemas for initial creation of databases for use with the sql module
certs - Folder containing certificates usable by FreeRADIUS and respective configuration files/makefile/etc. needed to generate them
sites-available - "Sites" that can be served by FreeRADIUS.
...
post-auth - After it has been determined what action should be taken, this section takes care of any extra tasks required to be carried out, for example logging, and can also add/modify attributes to be sent back to the NAS as part of the Access-Accept/Access-Reject packet.
Sources
Support / Knowledge places
...