rick wiltshire wrote: > All Clients are using WinXP supplicant. I managed to implement > PEAP&MS-CHAP with this setup however with users who have cached > credentials on their PCs. If the user logs on the PC for the first time, > he fails to reach the active directory to authenticate since the > connection is not yet authorized. So what I need is get the computer > authenticated and assigned an IP address and then authenticate the user > in a following phase while the connection is up.
That is "machine authentication". The machine will need to be authenticated, separately from the user. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
