freeradius-users-bounces+stieven.struyf=komatsu.eu@lists.freeradius.org
wrote on 10/23/2006 04:51:59 PM:
> Stieven.Struyf@komatsu.eu wrote:
> ...
>
> Please don't send HTML to the list.
i know, but it was related to my question and the info i already gathered.
>
>
> > I am implementing 802.1x on our network. The
> > easiest solution to do this is by using "reversible passwords"
in
> > active directory
>
> That isn't necessary.
>
> > Only other way is by using kerberos.
>
> That's impossible. Kerberos doesn't do MS-CHAP, which
is the
> authentication protocol used by Windows clients for 802.1x
What other setup can you recommend with minimal account
administration?
Can you argument why (not) to store password with
reversible encryption in AD.