Does FreeRADIUS support PEAPv0/EAP-TLS?
Jason Wittlin-Cohen
jwittlincohen at gmail.com
Tue Dec 9 12:52:53 CET 2008
On Tue, Dec 9, 2008 at 5:35 AM, Alan DeKok <aland at deployingradius.com>wrote:
> Jason Wittlin-Cohen wrote:
> > I already do that with the Juniper Access Client. The problem is that
> > the client certificate has the user's name as the Common Name and that
> > is sent in the clear. PEAP/EAP-TLS sends the user's certificate through
> > the tunnel obviating the issue. I admit this isn't a large problem but
> > it would be a nice feature to have.
>
> FreeRADIUS doesn't support RFC 5216, it's too new.
>
> It has been tested with PEAPv0/EAP-TLS in the past, but it's not a
> common configuration. So it might not work now.
>
> Alan DeKok.
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
Thanks for the quick response. I'll see if it works in 2.1.3 when I upgrade.
Jason
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20081209/1ddb019a/attachment.html>
More information about the Freeradius-Users
mailing list