rlm_krb5

Stieven.Struyf at komatsu.eu Stieven.Struyf at komatsu.eu
Tue Oct 24 09:48:42 CEST 2006


freeradius-users-bounces+stieven.struyf=komatsu.eu at lists.freeradius.org 
wrote on 10/23/2006 04:51:59 PM:

> Stieven.Struyf at komatsu.eu wrote:
> ...
> 
>   Please don't send HTML to the list.
i know, but it was related to my question and the info i already gathered.
> 
> 
> > I am implementing 802.1x on our network. The
> > easiest solution to do this is by using "reversible passwords" in
> > active directory
> 
>   That isn't necessary.
> 
> > Only other way is by using kerberos.
> 
>   That's impossible.  Kerberos doesn't do MS-CHAP, which is the
> authentication protocol used by Windows clients for 802.1x

What other setup can you recommend with minimal account administration?

Can you argument why (not) to store password with reversible encryption in 
AD.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20061024/e4c8af6a/attachment.html>


More information about the Freeradius-Users mailing list