26 Oct
2011
26 Oct
'11
12:10 p.m.
On 26/10/11 16:54, Bonald wrote:
If you are using the default config then your eap.conf must have default_eap_type = md5
Yes. The client NAKs the EAP-MD5 and asks for PEAP.
Try with peap.
Just to placate you, I have done so. It made no difference, except save one round-trip. User- and machine-based auth as well as single signon still both work. The default EAP type is just that - the default. If you have the client set up to use PEAP, it will NAK the MD5 and ask for EAP, and the server will honour it. Again: It is important that you understand authentication is driven by the CLIENT.