module ? aegis ? secureW2
?Regards,Jeremy[EMAIL PROTECTED]
a écrit:
Date: Thu, 1 Sep 2005 17:10:14 +0100
From: "Guy Davies" [EMAIL PROTECTED]
Subject: RE: Windows Client Authentification bevore Domain logon
To: "FreeRadius users mailing list"
freeradius-users@lists.freer
Things to look for for machine auth:
* SP2 or at least KB826942 loaded
* AuthMode key set to 2
* certs + ca loaded into machine store
* certs with the correct attributes + the magic attribute I've mentioned before
* make sure you select the correct CA in Validate server certificate section
* send
Le 31 août 05 à 18:53, Alan DeKok a écrit :
=?ISO-8859-1?Q?J=E9r=E9my_Cluzel?= [EMAIL PROTECTED] wrote:
Sorry, but I didn't find any references of this OID in the
creation scripts in the scripts directory (Ca.all, CA.certs...).
The only OID added seem to be 1.3.6.1.5.5.7.3.1 and
-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On
Behalf Of Marc-Henri Boisis-delavaud
Sent: 01 September 2005 15:19
To: FreeRadius users mailing list
Subject: Re: Windows Client Authentification bevore Domain logon
Le 31 août 05 à 18:53, Alan DeKok a écrit :
=?ISO-8859-1?Q?J
Please use correct terminology.
It's AUTHENTICATION, not authentification!
To authenticate = authentication
To authorize = authorization
To account = accounting
To identify = identification
--
Groeten, Regards, Salutations,
Thor Spruyt
M: +32 (0)475 67 22 65
E: [EMAIL PROTECTED]
W:
Hi Guy,
Do you know working supplicants with a GINA module ? aegis ? secureW2 ?
Regards,
Jeremy
[EMAIL PROTECTED] a crit:
Date: Thu, 1 Sep 2005 17:10:14 +0100
From: "Guy Davies" [EMAIL PROTECTED]
Subject: RE: Windows Client Authentification bevore Domain logon
To: "F
How can I add this OID to my machine certs ? using CA.certs script and xpextensions file ?
Regards,
Jeremy
Ben Walding ben.walding at gmail.com wrote:
I also found using machine certificates to be hit and miss (some
machines they'd be picked up, others they wouldn't - all XP SP2 with
Sorry, but I didn't find any references of this OID in the creation scripts in the
scripts directory (Ca.all, CA.certs...).
The only OID added seem to be 1.3.6.1.5.5.7.3.1 and 1.3.6.1.5.5.7.3.2 (in
xpextensions).
Is there any way to do this without patching openssl (like explained there
check this out Jeremy
http://www.linuxjournal.com/article/8095
On Wed, 2005-08-31 at 14:22 +0200, Jérémy Cluzel wrote:
Sorry, but I didn't find any references of this OID in the creation scripts
in the scripts directory (Ca.all, CA.certs...).
The only OID added seem to be 1.3.6.1.5.5.7.3.1
System pocztowy Galtex S.A. informuje, iz Twoja wiadomosc zostala dostarczona
Wiadomosc wygenerowana automatycznie przez system pocztowy uzytkownika belskia
Prosze na ta wiadomosc nie odpowiadac.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Thanks for the answert Alan, but what do you mean that it should be made more prominent in EAP-Conf? Could you give me detailed instructions how i can get this OID to my certificates?ArminFreeRadius users mailing list freeradius-users@lists.freeradius.org schrieb am 25.08.05 17:35:11:Ben Walding
Armin,
At 15:40 24/08/05, you wrote:
Ok, the hole day i tried to get it to work but this time when i install
the certificate as a machine zertifikate the radius authentifikation log
ends up with this log below.
The Certificates where generated with openssl and all works fine as User
I also found using machine certificates to be hit and miss (some
machines they'd be picked up, others they wouldn't - all XP SP2 with
appropriate patches).
And then I stumbled on this
http://lists.cistron.nl/pipermail/freeradius-users/2004-July/034141.html
1.3.6.1.4.1.311.17.2
After I started
Hi, i found this thred yesterday and tried it out to add this OID but it had no effekt...OK maybe i made somthing wrong. Could you describe how you added this oid to your machine zertifikate? Today i built completely new root,server and client certificates depending on the article in
System pocztowy Galtex S.A. informuje, iz Twoja wiadomosc zostala dostarczona
Wiadomosc wygenerowana automatycznie przez system pocztowy uzytkownika belskia
Prosze na ta wiadomosc nie odpowiadac.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Ben Walding [EMAIL PROTECTED] wrote:
And then I stumbled on this
http://lists.cistron.nl/pipermail/freeradius-users/2004-July/034141.html
1.3.6.1.4.1.311.17.2
After I started adding that OID to my machine certs, everything
started working wonderfully.
That OID is added by the cert
At 12:49 23/08/05, you wrote:
Hi, thanks for your email!
Ok, i tried it out but i have some problems. If i use the DWORT String you
sent me it has no efekkt. I found an other DWORT Key which Sounds
AuthMode and with this DWORT he only tries to authentificate with the
machine account. Maybe
Ok, the hole day i tried to get it to work but this time when i install the certificate as a machine zertifikate the radius authentifikation log ends up with this log below.The Certificates where generated with openssl and all works fine as User certificates but not as computer zertificate. I set
System pocztowy Galtex S.A. informuje, iz Twoja wiadomosc zostala dostarczona
Wiadomosc wygenerowana automatycznie przez system pocztowy uzytkownika belskia
Prosze na ta wiadomosc nie odpowiadac.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
You may need to add some extra configuration to your hints file:
# Wireless XP devices prefix the user name with host/
DEFAULT Prefix == host/
Hint = Wireless-Workstation
As far as I understand it, that will chop the host/ off for certain
types of processing. I'm sure Alan will brutally
At 16:26 22/08/05, you wrote:
Hi, i sucessfully installed a Radius authentificated Network with EAP-TLS
Authentifikation. But I cant get logon to my Domain Controller when
themachines boot up.. Ok, I know this Problem is not new, but is there any
chance to solve this problem without additional
Hi, thanks for your email!Ok, i tried it out but i have some problems. If i use the DWORT String you sent me it has no efekkt. I found an other DWORT Key which Sounds "AuthMode" and with this DWORT he only tries to authentificate with the machine account. Maybe you have made a typing mistake in
System pocztowy Galtex S.A. informuje, iz Twoja wiadomosc zostala odebrana
Wiadomosc wygenerowana automatycznie przez system pocztowy uzytkownika belskia
Prosze na ta wiadomosc nie odpowiadac.
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Hi, i sucessfully installed a Radius authentificated Network with EAP-TLS
Authentifikation. But I cant get logon to my Domain Controller when
themachines boot up.. Ok, I know this Problem is not new, but is there any
chance to solve this problem without additional software like AEGIS?? Or is
there
=?iso-8859-1?Q?Kr=E4mer_Armin?= [EMAIL PROTECTED] wrote:
Hi, i sucessfully installed a Radius authentificated Network with EAP-TLS
Authentifikation. But I cant get logon to my Domain Controller when
themachines boot up.. Ok, I know this Problem is not new, but is there any
chance to solve this
. August 2005 18:17
An: FreeRadius users mailing list
Betreff: Re: Windows Client Authentification bevore Domain logon
=?iso-8859-1?Q?Kr=E4mer_Armin?= [EMAIL PROTECTED] wrote:
Hi, i sucessfully installed a Radius authentificated Network with EAP-TLS
Authentifikation. But I cant get logon to my
26 matches
Mail list logo
