<br><br><div><span class="gmail_quote">On 21/11/06, <b class="gmail_sendername">Alan DeKok</b> <<a href="mailto:aland@deployingradius.com">aland@deployingradius.com</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
Ian Walker wrote:<br>>> I'm attempting 802.1x authentication with Checkpoint Integrity. I have<br>>> it working with peap no problems and usings mschapv2. However, when I<br>>> attempt with Integrity, I have to choose "Zone Labs Cooperative
<br>>> Enforcement" within the Windows 802.1x authentication options. I've<br>>> then chosen peap/mschapv2 here, but an additional setting is eap-type<br>>> "44" of which I'm unable to change on the client.
<br><br>> Which is proprietary to ZoneLabs, and which is otherwise unknown.<br><br>>> The main bit of this being the EAP NAK and "NAK asked for bad type 44".<br>>> I'm unsure of how I'm supposed to configure freeradius to use this type,
<br>>> as in the IANA numbers, type 44 is shown as:<br>>><br>>> 44 ZoneLabs EAP (ZLXEAP)<br>>><br>>> Any ideas on what I can do to get this working?<br><br>> Ask Zone Labs for documentation on how it works, and on an
<br>>implementation that you can submit to FreeRADIUS. Tell them that if<br>>their EAP type is implemented in FreeRADIUS, then it will be available<br>>in the most widely used RADIUS server on the planet. :)<br>
<br>> Alan DeKok.</blockquote><div><br>I sent an email to them yesterday, and chased it again today to find out what we can do here with this. I'll update this post once I know some more.<br><br><br>Ian<br></div><br></div>