hi, you cant do this - the request must go through a full EAP validation cycle - otherwise the client will just barf. you dont 'need' certs if you want to be insecure on the client (but thats foolish) but you do need to take the incoming request and then do a challenge response against the PEAP/MSCAHPv2 - eg using ntlm_auth against an AD server (which works 100% fine for machine accounts)
alan - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
