[RADIATOR] 802.1x authentication questions

Alexander Hartmaier alexander.hartmaier at t-systems.at
Tue Sep 13 07:38:36 CDT 2011


I found out what is required to make 802.1x work with WPA2-Enterprise + AES:
the AuthBy of the outer handler needs AutoMPPEKeys configured so that
the Cisco WLC generates the PMK and starts the 4-way PTK handshake.

This graph shows the complete flow:
http://kimiushida.com/bitsandpieces/articles/flow_diagram_wpa-enterprise/flow_wpa_enterprise.png

Please add this info the the reference manual AutoMPPEKeys section and
extend the the goodies/eap_peap_tls.cfg description of the config option!

Best regards, Alex

*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
T-Systems Austria GesmbH   Rennweg 97-99, 1030 Wien
Handelsgericht Wien, FN 79340b
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
Notice: This e-mail contains information that is confidential and may be privileged.
If you are not the intended recipient, please notify the sender and then
delete this e-mail immediately.
*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*


More information about the radiator mailing list