rlm_krb5
Stieven.Struyf at komatsu.eu
Stieven.Struyf at komatsu.eu
Tue Oct 24 09:48:42 CEST 2006
freeradius-users-bounces+stieven.struyf=komatsu.eu at lists.freeradius.org
wrote on 10/23/2006 04:51:59 PM:
> Stieven.Struyf at komatsu.eu wrote:
> ...
>
> Please don't send HTML to the list.
i know, but it was related to my question and the info i already gathered.
>
>
> > I am implementing 802.1x on our network. The
> > easiest solution to do this is by using "reversible passwords" in
> > active directory
>
> That isn't necessary.
>
> > Only other way is by using kerberos.
>
> That's impossible. Kerberos doesn't do MS-CHAP, which is the
> authentication protocol used by Windows clients for 802.1x
What other setup can you recommend with minimal account administration?
Can you argument why (not) to store password with reversible encryption in
AD.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20061024/e4c8af6a/attachment.html>
More information about the Freeradius-Users
mailing list