> -----Original Message----- > From: Luke Howard [mailto:[email protected]] > Sent: Friday, October 28, 2011 4:06 PM > To: Nico Williams > Cc: Jim Schaad; [email protected]; [email protected] > Subject: Re: [abfab] Review on gss-eap-03 > > > How about an option of OID per EAP method, and an OID for the variant > > that will negotiate any EAP method? > > > So NxM OIDs, where N is the |enctypes| and M |EAP mechanisms|? Sounds > a bit ugly...
I think it might get even uglier which is why I hesitated to mention it. You might say that you require to use of the new EAP-TLS-Tunnel method (and might want to say something about the cert domain although that is probably derived from the credential) and then want to specify that a machine and user EAP method need to be run inside of the tunnel. This starts making the array huge. Jim > > -- Luke= _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
