Re: EAP/TLS authentication in 2050
why?
really, why? wat purpose does testing these dates have - you really think your current infrastructure, and techologies such as 802.1X are going to be around in the same format in even 20 years time?
No, of course not:) This is my curiosity led me to test such date.
anyway....I'm guessing these are 32 bit server and client OS ?
you may find, in that case, that your tests will work until you set the date beyond 2037 - 32bit OS have problems with dates after 2038
so, try this with KNOWN parameters - eg 2020 , within the 2038 timeframe and things should work.
The server is running SLES 11 SP1 (x86_64), a workstation running Windows XP SP3 (32bit). Authentication is successful until February 1, 2050, ie for example if you logged in December 31, 2049, then the authentication is successful. A little later, try the client computer under the control of 64bit. the results announced later.
I tried on a 64 bit computer. The same result.
Victor Guk wrote:
I tried on a 64 bit computer. The same result.
Ask the OpenSSL people why their library can't handle dates after 2050. FreeRADIUS can't handle dates after 2038, due to 32-bit limitations of the timestamp in RADIUS. Alan DeKok.
participants (2)
-
Alan DeKok -
Victor Guk