Hi,
> Oh and by broken I mean windows XP type broken, as in will only attempt
> TLS authentication broken... and sends the username and password a user
> logged into the machine with by default broken... and so can never work
> out of the box broken.
FWIW, an unconfigured Windows XP box will n
> For your case 1): depends. If there actually is a user cert on the client's
> box and its CN does not contain an @, same as above applies. If their CN does
> contain an @, well, then you are pretty much lost. Shouldn't be many though.
>
No certs on users boxes, completely vanilla installs... W
> What we really want to be able to do, is for users with broken software,
> force the wireless association to succeed, and put them on the
> unauthorised VLAN. Of course just sending a plain old Access-Accept
> packet isn't sufficient, as it requires the tunneled authentication to
> succeed as wel
> Has anyone got any ideas ?
>
> I'm assuming theres no way to do it..
Not that I can think of. You shouldn't be able to coax a supplicant onto
a network by munging authentication (this is a *good* thing).
josh.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
4 matches
Mail list logo