Two questions about EAP-TLS

Norman Elton normelton at
Mon Aug 13 20:08:55 CEST 2018

>> No.
>> PEAP is pretty much EAP-TLS plus MS-CHAP.  MS-CHAP doesn't need the certs.  EAP-TLS does.

Thanks for the clarification. I assumed (erroneously) that EAP-TLS
used the client-side certificate, verified with the trusted CA
information on the server, _instead_ of the server-side certificate.
In fact, it should be "in addition to the server-side certificate"?


More information about the Freeradius-Users mailing list