Fernando Calvelo Vazquez wrote: > Hi folks: > > I'm still trying to configure any authentication method that includes a > client certificate validation (PEAP, EAP-TTLS... ) behind my > window-vista supplicant software client, but unfortunately no successfully. > Attached to this mail is the output of one PEAP try. > The authentication starts once and again forever, in a loop, but never > ends successfully.
There are two ways to figure out what's going on. 1) test it with a real client to be sure it works. See http://deployingradius.com/ for instructions on using eapol_test. You can also use client certificates. See the wpa_supplicant docs for more information. 2) debug Windows http://technet.microsoft.com/en-us/library/cc766215(WS.10).aspx If (1) works with client certs, then the issue is only (2). > I'm a bit frustrated with this "certificates" locking point. Blame Microsoft. They put great effort into breaking inter-operability, and in ensuring that it's nearly impossible for administrators to quickly discover the cause of the problem. Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html