On 26/10/11 16:54, Bonald wrote:
If you are using the default config then your eap.conf must have default_eap_type = md5
Yes. The client NAKs the EAP-MD5 and asks for PEAP.
Try with peap.
Just to placate you, I have done so. It made no difference, except save one round-trip. User- and machine-based auth as well as single signon still both work.
The default EAP type is just that - the default. If you have the client set up to use PEAP, it will NAK the MD5 and ask for EAP, and the server will honour it.
Again: It is important that you understand authentication is driven by the CLIENT.
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html