10 Apr
2026
10 Apr
'26
8:59 a.m.
On Apr 10, 2026, at 7:50 AM, Cedric Delaunay <Cedric.Delaunay@insa-rennes.fr> wrote:
Unfortunately, I tried your proposals this morning with non success :
Oh well. :(
That's what Brian expected :( => server is ok but client don't Any other way to reach my goal ?
Use TTLS with PAP. Plus, you shouldn't really be using PEAP/MS-CHAP. Using that requires you to store clear-text passwords on disk. Which is very bad. PAP is substantially more secure, despite random nonsense articles you might find on the net. There will shortly be an RFC which explains this, and deprecates CHAP / MS-CHAP in favour of PAP. Alan DeKok.