Freeradius CRL Problem - combined CA and CRL dont work

[Matthew Newton]

On 29/06/2024 14:10, PiotrChm wrote:
> 
> Here is my second question - is it possible to set double authorization, 
> i.e. the user must have an installed certificate and then provide the 
> login and password from AD to connect to WiFi?

Even though the EAP methods can potentially do it, for all intents and 
purposes nothing supports EAP-TTLS or PEAP (which would let you do 
username+password auth) together with client certificates. EAP-TLS is 
cert only.

I'd expect doing both may only be possible using wpa-supplicant on Linux 
using the config files.

So basically no.

-- 
Matthew