10 Jul
2021
10 Jul
'21
3:18 p.m.
On Jul 10, 2021, at 1:44 PM, Brian Julin <BJulin@clarku.edu> wrote:
Just one small additional caveat when getting this to work: don't use a recently upgraded android to do your tests. Some recent android updates send the outer id as the inner username, totally breaking this feature on those client devices.
Arg. What a horrible thing to do. I'm in the process of updating the standards for TTLS, PEAP, FAST, etc. I'll add some text to the IETF specification saying that this is a terrible idea. Every time I think that a vendor can't do something more ludicrous, they go and surprise me. Alan DeKok.