PEAP Inner Tunnel Question
Alan DeKok
aland at deployingradius.com
Thu Apr 24 16:26:56 CEST 2014
Phil Mayers wrote:
> As others have noted, PEAPv0/EAP-TLS is used and usable. Whilst
> Microsoft clients might not support it, I see no reason
> PEAPv0/EAP-anything would fail, from a protocol level.
It should... but Microsoft in their infinite wisdom decided to SAVE
FOUR BYTES in the inner-tunnel data. Which means it's no longer
strictly EAP, but EAP minus some stuff.
... and then you need to massage the data before using it an EAP stack.
Arg. Why do some people insist on making things difficult?
Alan DeKok.
More information about the Freeradius-Users
mailing list