Hi Henri, On Fri, Mar 25, 2011 at 09:40:48AM +0200, Henri Bragge wrote: > > > + /* never request credentials if using EAP-TLS */ > > Would you mind elaborating here ? > > No inner authentication (phase2 method) is used with EAP-TLS, so no > identity/passphrase needed in that sense. > > Identity is mandatory for EAP-TLS too, so it could be asked when > connecting, and so could PrivateKeyPassphrase. On the other hand, TLS > certificates are personal, so Identity and PrivateKeyPassphrase are > likely to be provisioned along with file paths etc (compared to phase2 > methods where only Identity/Passphrase are personal). > > So there's at least three options when connecting to EAP-TLS network: > 1) nothing will be asked (everything is provisioned) > 2) Identity will be asked > 3) Identity/PrivateKeyPassphrase will be asked > > I chose 1), but I haven't got much input for this case so opinions are > appreciated. I'm really fine with that, but please improve your comments by stating that we do expect EAP-TLS networks to be fully provisioned.
Cheers, Samuel. -- Intel Open Source Technology Centre http://oss.intel.com/ _______________________________________________ connman mailing list connman@connman.net http://lists.connman.net/listinfo/connman
