Machine auth without cert - EAP-PEAP/MSCHAPV2
A.L.M.Buxey at lboro.ac.uk
A.L.M.Buxey at lboro.ac.uk
Mon Feb 25 22:27:33 CET 2008
hi,
you cant do this - the request must go through a full EAP
validation cycle - otherwise the client will just barf.
you dont 'need' certs if you want to be insecure on the
client (but thats foolish) but you do need to take the
incoming request and then do a challenge response against
the PEAP/MSCAHPv2 - eg using ntlm_auth against an AD server
(which works 100% fine for machine accounts)
alan
More information about the Freeradius-Users
mailing list