802.1x maschine auth with SSL?
A.L.M.Buxey at lboro.ac.uk
A.L.M.Buxey at lboro.ac.uk
Tue Mar 25 20:15:38 CET 2008
Hi,
> i'm very sorry, there is a little missunderstanding :(
> Switch works ok so far, so nothing needs to be done there.
> My client is xp box with logon client which can do maschine auth and
> prompt the user for his name and pass...
> So i use ssl to auth the maschine (has a general cert like
> "clientofmycompany"). before that i just used user+pw for the box,
> which worked and i had user+pw in my users file... to provide vlan id,
> you know?
> now i read when using ssl, i don't need the user+pw stuff in my users
> file - but how assign vlan then?
> And after all that stuff, if user logs on, a new 802.1x request is
> send out, which uses ssl + user + pw (ttls) to put him in his "home"
> vlan.
ok, so the auth is now via the TLS module - so you will need to
use any of the other methods to send back VLAN attributes -
users, sql, perl, python etc - any of them will do - you just
need to think on what basis you will be assigning the VLAN... eg
UserName? IP? NAS?
alan
More information about the Freeradius-Users
mailing list