TLS Athentifikation before Domain Logon XP
Armin Krämer
Kraemer.Armin at web.de
Wed Jan 4 15:57:51 CET 2006
Hi, i searched the whole archive about this Problems but can not find an
real answert to my Problem.
I want Windows XP to authenticate to Freeradius when before the user Logs on
the domain otherwise he would have no network connection to reach the PDC
and the logon fails.
It should be possible wit the XP Client and no other additional software.
I tried out the registry patch AuthMode with a value of 2 whch causes
windows to authenticate with the machine certificate only. Then I generated
a client certificate with openssl with the special OID 1.3.6.1.4.1.311.17.2
which was posted in the mailing list some time ago. But with this
certificate authentification fails.
Is there anybody who successfully managed that problem and can describe me
how he solved this problem step by step. I think the problem is the machine
certificate.
Greetings Armin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20060104/ecd4c850/attachment.html>
More information about the Freeradius-Users
mailing list