29 Jan
2014
29 Jan
'14
5:17 p.m.
Maciej Milewski wrote:
I think that makes EAP-TLS less obvious to set up. Especially if you are using full user name as CN.
The common practice is to use an email address as the user identity. The default configuration is intended to work for as many people as possible, which is why it has the current rules. You're welcome to do something else, but you've got to change the defaults. Alan DeKok.