23 Sep
2016
23 Sep
'16
3:19 p.m.
On Sep 23, 2016, at 2:45 PM, Laurens Vets <laurens@daemon.be> wrote:
Thank you for your quick response! The clients are macOS Sierra and iOS 10, so it will be a bit difficult to update...
Yes,
What would be the best way to handle user passwords in this scenario?
Use clear-text passwords.
What I'm trying to achieve is a safe password storage/management, i.e. if the userdb gets stolen. Clearly cleartext password and NT hash are not sufficient in this situation.
a) use clear-text passwords, and keep your database secure b) use EAP-TLS, and client certificates, with no passwords Alan DeKok.