On 30/03/12 12:51, Heinrich, Sebastian wrote:
I apologize for bothering you. I thought that somewhere might be a how-to to solve this.
Unfortunately there's nothing to "solve". This is just how PEAP/MSCHAP works; there is a server cert, and for it to be secure, you must validate it.
There are other EAP methods, that don't require pre-provisioned trust (e.g. EAP-SRP, EAP-EKE). But no-one supports them :o(
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
