how to turn on client certificate verification for PEAP?
Jim Shi
hanmao_shi at apple.com
Wed Mar 18 17:16:23 CET 2015
Hi, Arran,
Actually we would like to have PEAP + MSCHAP + client certificate validation,
Looks PEAP + MSCHAP is working, we just want to additional client certificate validation.
Do you meant to add the following
> authorize {
> update control {
> EAP-TLS-Require-Client-Cert = Yes
> }
> }
to site-enabled/default?
Thanks
Jim
> On Mar 16, 2015, at 5:06 PM, Arran Cudbard-Bell <a.cudbardb at freeradius.org> wrote:
>
>
>> On 16 Mar 2015, at 20:01, Jim Shi <hanmao_shi at apple.com> wrote:
>>
>> Hi, how to turn on client certificate verification for PEAP?
>>
>> I added the following line to eap.conf file:
>>
>> peap {
>>
>>
>> }
>>
>> However, it seems has no effect.
>>
>
> authorize {
> update control {
> EAP-TLS-Require-Client-Cert = Yes
> }
> }
>
> Arran Cudbard-Bell <a.cudbardb at freeradius.org>
> FreeRADIUS development team
>
> FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2
>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list