Computer authentication

David Mitton david at
Tue Mar 5 22:11:58 CET 2013

Quoting Jeremy Schubert <jschubert at>:

> Is using a device's MAC address the only way to authenticate a   
> specific machine?
> -------
> Jeremy Schubert

In a Windows Domain, one can use the system's workstation name and a  
credential created and assigned when the system is "joined" to the  
domain. ( typically with EAP-MSCHAP inside of PEAP)

Another technique is to assign unique certificates to the machine, and  
use EAP-TLS.


More information about the Freeradius-Users mailing list