(RADIATOR) PEAP, Radiator and RSA-Radius
Mike McCauley
mikem at open.com.au
Wed Mar 24 20:37:35 CST 2004
Hello Stefan,
On Thu, 25 Mar 2004 10:39 am, Stefan Riegelnik wrote:
> Hello,
>
> We have a WLAN with EAP/PEAP (MSCHAPv2) and it works fine with
> users and passwords stored in the usersfile.
> Now we would like to proxy in some way the auth to a SecurID-radius
> (with OTP) but it does not work (because SecurID-radius does not support
> MSCHAPv2).
>
> I would like to ask what is the "recommended" way to use PEAP in
> connection with OTP/RSA-SecureID-Radius?
The only types of EAP that would work with RSA-SecureID are
EAP-One-Time-Password or EAP-Generic-Token-Card. So you would need a 802.1x
client that could support EAP-One-Time-Password inside PEAP or
EAP-Generic-Token-Card inside PEAP.
Some 802.1x clients I know of support EAP-One-Time-Password or
EAP-Generic-Token-Card. Im not sure if they can be used inside PEAP.
Hope that helps.
>
> Regards, Stefan
>
> --
> Stefan Riegelnik sriegelnik at netway.at
> Non esistono uomini cattivi - dice l'orso -
> se sono cucinati bene. Stefano Benni
--
Mike McCauley mikem at open.com.au
Open System Consultants Pty. Ltd Unix, Perl, Motif, C++, WWW
9 Bulbul Place Currumbin Waters QLD 4223 Australia http://www.open.com.au
Phone +61 7 5598-7474 Fax +61 7 5598-7070
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP etc on Unix, Windows, MacOS etc.
--
Archive at http://www.open.com.au/archives/radiator/
Announcements on radiator-announce at open.com.au
To unsubscribe, email 'majordomo at open.com.au' with
'unsubscribe radiator' in the body of the message.
More information about the radiator
mailing list