WPA enterprise
Ivan Kalik
tnt at kalik.net
Sun Mar 30 21:24:38 CEST 2008
Since Win XP is what most people have, you probably want to use PEAP.
That forms a TLS outer tunnel and then does EAP-MSCHAPv2 in the inner
tunnel. Since you already have mschap (and ldap) working, there is very
little to do. If you have 1.1.x you need to create certificates and
configure tls and peap sections in eap.conf. With 2.0.x you probably
don't need to do anything at all - it will "just work".
Ivan Kalik
Kalik Informatika ISP
Dana 30/3/2008, "David Hláčik" <david at hlacik.eu> piše:
>Hi i have freeradius mschap ldap working configuration - i am using it for
>pptpd (VPN server) to authentificate against freeradius with ldap .
>Windows VPN client can connect to our company network and use it.
>
>Next i want to add user/password auth to our WIFI (based on Dlink AP - with
>radius support). We are currently using wpa-preshared key. i want to use wpa
>enterprise with ldap authentification (providing username and password)
>without need to install any certificate on windows.
>
>First to make a clear - how do i achieve it? --- i mean exactly which
>protocol i need to use and how it works (some shortcut to such howto)
>
>How do i arrange to use same freeradius for currently working VPN and for my
>plan to make wpa enterprise.
>
>Thanks in advance!
>
>David
>
>
More information about the Freeradius-Users
mailing list