24 Apr
2014
24 Apr
'14
10:26 a.m.
Phil Mayers wrote:
As others have noted, PEAPv0/EAP-TLS is used and usable. Whilst Microsoft clients might not support it, I see no reason PEAPv0/EAP-anything would fail, from a protocol level.
It should... but Microsoft in their infinite wisdom decided to SAVE FOUR BYTES in the inner-tunnel data. Which means it's no longer strictly EAP, but EAP minus some stuff. ... and then you need to massage the data before using it an EAP stack. Arg. Why do some people insist on making things difficult? Alan DeKok.