On Jun 10, 2015, at 11:13 , Nicolas Gailly <[email protected]> wrote:
>
> It doesn't seem to take into account kerberos authentication at all.
> What did I miss ?
Two things come to mind:
The windows supplicant tries PEAP by default iirc. PEAP is not compatible with
kerberos.
The radius server is not configured to authorize 802.1x using kerberos anyway.
The PacketFence sources are meant as authorization sources (mostly).
802.1x authentication has to succeed first (or you should use MAC
authentication).
Getting 802.1x working in your case would require a kerberos compatible
supplicant and configuring FreeRADIUS for it.
Regards,
--
Louis Munro
[email protected] :: www.inverse.ca
+1.514.447.4918 x125 :: +1 (866) 353-6153 x125
Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence
(www.packetfence.org)
------------------------------------------------------------------------------
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
