[RADIATOR] Radiator + libtnc + tpm platform authentication IMC
Heikki Vatiainen
hvn at open.com.au
Fri Jul 12 04:28:26 CDT 2013
On 07/11/2013 07:31 PM, Florian Kabus wrote:
> We would like to authenticate Win 7 endpoints with certificates stored
> on the TPM and thus based on the identity deny or permit access to the
> enterprise network.
Hello Florian,
this sounds like a normal EAP-TLS setup from the RADIUS/EAP server's
perspective. Please see goodies/eap_tls.cfg for EAP-TLS examples. I do
not think it matters to the servers side whether the private key is
stored in a TPM chip or in a file.
Thanks,
Heikki
--
Heikki Vatiainen <hvn at open.com.au>
Radiator: the most portable, flexible and configurable RADIUS server
anywhere. SQL, proxy, DBM, files, LDAP, NIS+, password, NT, Emerald,
Platypus, Freeside, TACACS+, PAM, external, Active Directory, EAP, TLS,
TTLS, PEAP, TNC, WiMAX, RSA, Vasco, Yubikey, MOTP, HOTP, TOTP,
DIAMETER etc. Full source on Unix, Windows, MacOSX, Solaris, VMS,
NetWare etc.
More information about the radiator
mailing list