Problem with 802.1X and EAP-PEAP configuration
Peter Sprenger
sprenger at moving-bytes.de
Fri Jun 27 12:06:36 UTC 2025
Hi,
I have problem with 802.1X and after some time I am really desperated:
- I am writing an Embedded Ansi C client that already supports EAP-TLS, EAP-TTLS PAP and EAP-TTLS CHAP. Now I thought EAP-PEAP would not be so hard. But with the FreeRadius config I cannot get the outer TLS-tunnel running. The TLS 1.2 connection gets rejected from my SSL library "ASN parsing error, invalid input". For EAP-TLS and EAP-TTLS I have no problem with TLS 1.2 and TLS 1.3 connections.
- I tried to work with eapol_test and there is the same picture: EAP-TLS, EAP-TTLS PAP and EAP-TTLS CHAP are working, but for EAP-PEAP the outer TLS connection gets refused.
- From ChatGPT I got the info, that TLS 1.3 may cause problems to EAP-PEAP. So I have restricted the client and the FreeRadius server to TLS 1.2. No success.
Any help or idea what be very appreciated!
Best Regards,
Peter
More information about the Freeradius-Users
mailing list