Hi,
Oh and by broken I mean windows XP type broken, as in will only attempt
TLS authentication broken... and sends the username and password a user
logged into the machine with by default broken... and so can never work
out of the box broken.
FWIW, an unconfigured Windows XP box will not
Hi,
Being a nice friendly openish institution, and not wanting to overload
our helpdesk staff with hundreds of users trying to set up their
laptops, we decided to make registration, a self service kind of affair.
We decided to setup an unauthorised VLAN, on this VLAN there exists a
support
Has anyone got any ideas ?
I'm assuming theres no way to do it..
Not that I can think of. You shouldn't be able to coax a supplicant onto
a network by munging authentication (this is a *good* thing).
josh.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
What we really want to be able to do, is for users with broken software,
force the wireless association to succeed, and put them on the
unauthorised VLAN. Of course just sending a plain old Access-Accept
packet isn't sufficient, as it requires the tunneled authentication to
succeed as well...
For your case 1): depends. If there actually is a user cert on the client's
box and its CN does not contain an @, same as above applies. If their CN does
contain an @, well, then you are pretty much lost. Shouldn't be many though.
No certs on users boxes, completely vanilla installs... Well
5 matches
Mail list logo
