Disable PEAP-TLS but allow PEAP
Phil Mayers
p.mayers at imperial.ac.uk
Tue Aug 14 17:09:01 CEST 2012
On 14/08/12 15:57, Cotton, Jesse wrote:
> We need to use a public certificate for PEAP b/c the majority of our
> clients are not on our domain. However I do not want to allow EAP-TLS
> with any cert signed by the 3^rd party CA. Is it possible to prevent
> PEAP-TLS with a cert but allow PEAP? If so, what config options do I
> need to add and where?
It is EAP-TLS. NOT PEAP-TLS.
> I’ve read several posts about this and none have been helpful.
In the current version of the server, I think this is hard. It may be
easier in the HEAD / 3.0 code.
More information about the Freeradius-Users
mailing list