using windows 8's builtin eap-ttls w/ freeradius
Alan Buxey
A.L.M.Buxey at lboro.ac.uk
Mon Mar 5 21:19:15 CET 2012
hi,
right. interesting. I've just been looking into Windows 8 and I found
that if I chose a non-EAP method with TTLS (eg PAP or MSCHAP) then it
didnt work. but if I chose an EAP method with TTLS - eg EAP-MSCHAPv2 then
it worked fine. so more needs to be looked at there.
based on the UI it seems that theres 2 groups of people coding the stuff
as the PEAP interface has updated options and layout - whereas the TTLS
page is based on the old windows XP PEAP pane - from layout/options. its
a little hideous. importing of CAs has changed again - since Win7 - the auto
detect for cert import now puts it into the wrong place again...but manually
choosing the store and choosing Root CAs gets it in the very small list of
CAs that Win8 knows...
it seems you can choose whatever you want for the anonymous ID in TTLS
too - whereas the PEAP anonymous is more conservative.
..and none of this can be done via the new 'metro' interface....yes, its
funky and looks pretty but once again, it doesnt show you much detail when
you hover over the wireless - signal strength bars, encyption and 802.11n -
so what about channel or SNR?
couldnt find an obvious 'disconnect' option in the interface either...but it
did take me a minute or 2 to find the 'shutdown/reset' option! ;-)
alan
More information about the Freeradius-Users
mailing list