Alan DeKok wrote: > > Raymond <[EMAIL PROTECTED]> wrote: > > Our wireless ethernet land will require two-factor authentication, something > > you have (x.509 cert) and something you know (system pasword via pam). > > Windoz (98, 2K and XP) and Linux (suse and redhat) endpoints will be > > utilizing Meetinghouse's Aegis 802.1x client. > > How do they authenticate over RAIDUS using an X.509 cert? Knowing > that will help answer your question. >
EAP-TLS is certificate based authentication and supports x509 certs. The answer to Raymonds question, probably, is EAP-TTLS, which is not currently supported in freeradius. Anyway EAP-TTLS is still a draft and not an RFC. -Raghu - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
