14 Sep
2011
14 Sep
'11
12:59 p.m.
Ian Pilcher wrote:
At least for the "private" networks, I want everyone to have their own credentials, rather than a shared key (a la WEP and WPA[2]-PSK).
That's EAP, then.
* How difficult is this likely to be? See the FAQ. Configure an IP and shared secret in clients.conf. Add a "known good" user/password. Profit!
I did read the FAQ and the documentation page on freeradius.org. The steps that you list look like the "Initial Tests" section of the documentation page, but will that actually work for wireless access? I've Googled up several HOWTO-type documents, and they all involve creating a bunch of SSL certificates.
http://deployingradius.com/ There's an "EAP howto". It's detailed, explanatory, and works. Alan DeKok.