server default {
	listen {
		type = auth
		ipaddr = *
		port = 0
		limit {
		      max_connections = 16
		      lifetime = 0
		      idle_timeout = 30
		}
	}

	authorize {
		filter_username
		preprocess
		chap
		mschap
		digest
		suffix
		eap {
			ok = return
		}
		files
		expiration
		logintime
		pap
	}
	
	authenticate {
		Auth-Type PAP {
			pap
		}
		Auth-Type CHAP {
			chap
		}
		Auth-Type MS-CHAP {
			mschap
		}
		mschap
		digest
		eap
	}

	session {
	}

	post-auth {
		if (session-state:User-Name && reply:User-Name && request:User-Name && (reply:User-Name == request:User-Name)) {
			update reply {
				&User-Name !* ANY
			}
		}
		update {
			&reply: += &session-state:
		}
		exec
		remove_reply_message_if_eap
		Post-Auth-Type REJECT {
			attr_filter.access_reject
			eap
			remove_reply_message_if_eap
		}
		Post-Auth-Type Challenge {
		}
	}
}
