EAP-Tls with MySQL

Alan DeKok aland at deployingradius.com
Sat Jun 18 18:54:30 CEST 2016

On Jun 18, 2016, at 12:17 PM, Nicolas Roussi <nicolas.roussi at archimedean.org> wrote:
> On Jun 17, 2016, at 7:07 PM, Matthew Newton <mcn4 at leicester.ac.uk> wrote:
>> Er, EAP-TLS doesn't use passwords.
>> What are you actually using?
> My understanding after reviewing the debug messages is that upon association with the AP, the client performs a key exchange with FR server.
> Then, once the secure channel is setup, the client is asked to provide username and password.

  Then it's not EAP-TLS.

  You *could* read the debug output to see what EAP method it uses...

> Is my understanding correct? I used this guide: https://sites.google.com/site/strangemovement/raspberry-pi/04---install-and-configure-wpa2-enterprise 

  The Wiki has documentation for getting EAP to work.  If you go to http://freeradius.org/ and click on the "documentation" link, you'll get more documentation.

  I just don't understand why people go to bad third-party sites instead of reading the Wiki and web site. 

> That password is expected (or it defaults to) Cleartext-Password. Is there a way that I can change that? As I said before, it works. I just don’t feel comfortable saving user passwords in cleartext in my DB.

  Read this:


  And then decide what format passwords should be in.

  Alan DeKok.

More information about the Freeradius-Users mailing list