EAP questions

Alan DeKok aland at deployingradius.com
Fri Dec 1 18:50:21 CET 2006


Scott Hughes wrote:
>
> I am having a problem with our wireless clients re-authenticating
> (non-radius issue I believe) anywhere from a few seconds, to four minutes,
> to a few hours.  The client is NOT moving.  This is a simple design of Cisco
> 1231 APs and laptop/desktop clients.  Strange.

  They may be losing connectivity to the NAS (i.e. wireless problems).
When that happens, they re-authenticate.

> Also, I am under the understanding that EAP-TLS does NOT require a client
> side cert, and EAP-TTLS DOES require a client side cert.  Is this correct or
> is my thinking backwards.  I am only interested in a server side cert.

  Then use TTLS.  TLS requires a client cert.

  Alan DeKok.
--
  http://deployingradius.com       - The web site of the book
  http://deployingradius.com/blog/ - The blog



More information about the Freeradius-Users mailing list