Re : Re : EAP/TTLS PEAP MSCHAP

2007-04-05 Thread Eshun Benjamin
Avril 2007, 23h16mn 24s Objet : Re: Re : EAP/TTLS PEAP MSCHAP Ian Truelsen wrote: > On Wed, 2007-04-04 at 20:58 +0100, Arran Cudbard-Bell wrote: > >> According to the microsoft support article >> (http://support.microsoft.com/kb/814394/en-us) >> >> "The

Re: Re : EAP/TTLS PEAP MSCHAP

2007-04-04 Thread Arran Cudbard-Bell
>> Pretty much. As long as you have the proper IP address for the AP in >> your clients.conf, which was my particular stupidity :) Still, it seems >> to work for me. >> Hehe, yeah same for me first time round ! Now it's all done via sql with a modified version of 1.1.5 to allow user NAS quer

Re: Re : EAP/TTLS PEAP MSCHAP

2007-04-04 Thread Ian Truelsen
On Wed, 2007-04-04 at 22:16 +0100, Arran Cudbard-Bell wrote: > Is it really just as simple as creating the certificate, signing it with > the right extensions, installing the proper rootCA on the windows > machines , and configuring the windows supplicant correctly ? > Pretty much. As long as yo

Re: Re : EAP/TTLS PEAP MSCHAP

2007-04-04 Thread Arran Cudbard-Bell
Ian Truelsen wrote: > On Wed, 2007-04-04 at 20:58 +0100, Arran Cudbard-Bell wrote: > >> According to the microsoft support article >> (http://support.microsoft.com/kb/814394/en-us) >> >> "The IAS or the VPN server computer certificate is configured with the >> Server Authentication purpose. Th

Re: Re : EAP/TTLS PEAP MSCHAP

2007-04-04 Thread Ian Truelsen
On Wed, 2007-04-04 at 20:58 +0100, Arran Cudbard-Bell wrote: > According to the microsoft support article > (http://support.microsoft.com/kb/814394/en-us) > > "The IAS or the VPN server computer certificate is configured with the > Server Authentication purpose. The object identifier for Server

Re: Re : EAP/TTLS PEAP MSCHAP

2007-04-04 Thread Arran Cudbard-Bell
8 2007 : Debug: Going to the next request > Wed Apr 4 21:21:48 2007 : Debug: rl_next: returning NULL > Wed Apr 4 21:21:48 2007 : Debug: Waking up in 6 seconds... > Wed Apr 4 21:21:54 2007 : Debug: --- Walking the entire request list --- > Sending Access-Reject of id 0 to 10.1.5.26 p

Re: EAP/TTLS PEAP MSCHAP

2007-04-04 Thread Arran Cudbard-Bell
Eshun Benjamin wrote: > Mac connects but ms windows does not. I am doing server side cert. > Error from ms windows. > > > User-Name = "testgeneral" > NAS-IP-Address = 10.1.5.26 > Called-Station-Id = "0016014d9158" > Calling-Station-Id = "0019e3034ceb" > NAS-Identif

EAP/TTLS PEAP MSCHAP

2007-04-04 Thread Eshun Benjamin
Mac connects but ms windows does not. I am doing server side cert. Error from ms windows. User-Name = "testgeneral" NAS-IP-Address = 10.1.5.26 Called-Station-Id = "0016014d9158" Calling-Station-Id = "0019e3034ceb" NAS-Identifier = "0016014d9158" NAS-Port