17 Sep
2024
17 Sep
'24
2:16 p.m.
dominic.stalder@unibe.ch <dominic.stalder@unibe.ch> wrote:
I know there is the concept of TEAP and EAP chaining (I think of it as a Cisco proprietary protocol), but is there a best practice way to do this on FreeRADIUS for different kind of end devices (eg. Mixcrosoft, macOS, and so on)?
Nope. Not with the default supplicants supplied by commodity operating systems. Microsoft is supporting chained auth going forward, and wpa_supplicant must also by now, but it will be lobotomized by a configurator on Android, and nobody can tell Apple what to do so they never do anything useful.