EAP-TLS and Windows 10 fails for wireless

Arran Cudbard-Bell a.cudbardb at freeradius.org
Sun Jun 12 22:49:13 CEST 2016

> On 12 Jun 2016, at 16:38, Stefan Winter <stefan.winter at restena.lu> wrote:
> Hi,
>> I've installed v3.1x and the problem resolved itself.
>> The Wi-fi menu went through the following steps on Windows 10 laptop (the certificates are already installed and the wireless connection was manually added):
>> * Choose a certificate [Ok]
>> * Checking network requirements
>> * Continue connecting ?
>> If you expect to find acksys in this location, go ahead and connect. Otherwise, it may be a different network with the same name.
>> [Show certificate details]
>> [Connect] [Cancel]
>> * Checking network requirements
>> And the connection was established.
> It's funny how some people think that the workflow above equals "it
> works". If Windows asks the "Show cert details / do you expect"
> question, then this means the server certificate and CA chain checks
> *failed* and it's resorting to user-interactive "D'oh, I'm guessing" mode.
> So, security-wise, seeing this workflow means your setup is still
> broken; just more subtly than before.


See slides 6-16 :)


Arran Cudbard-Bell <a.cudbardb at freeradius.org>
FreeRADIUS Development Team

FD31 3077 42EC 7FCD 32FE 5EE2 56CF 27F9 30A8 CAA2

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 872 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20160612/a1626c1c/attachment-0001.sig>

More information about the Freeradius-Users mailing list