20 May
2015
20 May
'15
12:09 p.m.
No.> > But you're not saying what client you're using. That would help.> >
StrongsWAN xauth-eap with eap-ttls and eap-radius plugins. https://wiki.strongswan.org/projects/strongswan/wiki/XAuthEAP FreeRADIUS works with ALL known EAP clients. It *is* the standard in the> RADIUS space. OpenSSL is similarly the standard in the TLS space.> > If something doesn't work with FreeRADIUS and OpenSSL, my guess is:> > a) the client is broken> > I am not sure about that but Strongswan eap-ttls seems to be rather mature. b) FreeRADIUS and/or OpenSSL weren't built with the required features> e.g. an old OpenSSL library won't do TLS 1.2, because the code was> written before the standard was finalized.> > Not possible. Gabriel