Generating a Microsoft compatible CSR for FreeRADIUS
Johnson, Neil M
neil-johnson at uiowa.edu
Fri Jan 21 16:15:19 CET 2011
We use XpressConnect from CloudPath Networks ( http://cloudpath.net )to configure clients.
It's a little pricey, but it's paid for itself saving our help desk countless man-hours trying to diagnose client configuration issues.
-Neil
--
Neil Johnson
Network Engineer
Information Technology Services
The University of Iowa
319 384-0938
neil-johnson at uiowa.edu
> -----Original Message-----
> From: freeradius-users-bounces+neil-
> johnson=uiowa.edu at lists.freeradius.org [mailto:freeradius-users-
> bounces+neil-johnson=uiowa.edu at lists.freeradius.org] On Behalf Of
> Sallee, Stephen (Jake)
> Sent: Friday, January 21, 2011 8:52 AM
> To: FreeRadius users mailing list
> Subject: RE: Generating a Microsoft compatible CSR for FreeRADIUS
>
> >http://www.lawn.gatech.edu/help/gtwpa
>
> HOLY CRAP! I looked at your documentation (very well done BTW) But NONE
> of my win 7 stations have ever showed me the accept certificate prompt!
> NONE! Please, please tell me how you got it to do that! I have been
> searching for exactly that.
>
> Jake Sallee
> Godfather Of Bandwidth
> Network Engineer
>
> Fone: 254-295-4658
> Phax: 254-295-4221
>
>
>
> -----Original Message-----
> From: freeradius-users-
> bounces+jake.sallee=umhb.edu at lists.freeradius.org [mailto:freeradius-
> users-bounces+jake.sallee=umhb.edu at lists.freeradius.org] On Behalf Of
> John Douglass
> Sent: Friday, January 21, 2011 8:45 AM
> To: FreeRadius users mailing list
> Subject: Re: Generating a Microsoft compatible CSR for FreeRADIUS
>
> I have built some WPA configuration guides as well as some
> troubleshooting documentation on our build out at:
>
> http://www.lawn.gatech.edu/help/gtwpa
>
> There is pretty much always some form of cert acceptance for most OS.
>
> - John Douglass, Systems Engineer
>
> Sent from my iPad
>
> On Jan 21, 2011, at 9:33 AM, Phil Mayers <p.mayers at imperial.ac.uk>
> wrote:
>
> > On 21/01/11 14:10, Sallee, Stephen (Jake) wrote:
> >> Has anyone gotten windows clients to work WITHOUT having to do any
> >> manual config on the clients?
> >>
> >
> > Windows XP with PEAP/MS-CHAPv2 always require some manual config;
> specifically you need to select PEAP, de-select "automatically use my
> windows logon name" and (if using a cert from a non-installed CA)
> install the CA cert.
> >
> > Windows 7 (and I think Vista) default to PEAP/MS-CHAPv2 so you can
> just click on the SSID and type your username/password, then "accept"
> the CA cert.
> >
> > Sadly this wasn't backported into windows XP SP3 IIRC.
> > -
> > List info/subscribe/unsubscribe? See
> > http://www.freeradius.org/list/users.html
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
>
> -
> List info/subscribe/unsubscribe? See
> http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list