Having TTLS support in Windows would be great. It would make so much sense for implementers. It would be a miracle really! I'm all for it.
Call me skeptical but I don't see it happening. I participated in the IEEE working groups a few years back and had the opportunity to ask that specific questions to some of the key Microsoft engineers working on the stacks. At that time, it was an *absolute* NO - if that has changed, great but I see no indication of Microsoft doing it. As of December 2006, the official word from http://www.microsoft.com/technet/network/ias/iasfaq.mspx is "Microsoft does not plan to support Tunneled TTLS." In my opinion, the only way it would appear in Windows is if they saw market share loss to another desktop OS because of lack of EAP-TTLS support. Last time I visited the local computer stores a few days ago, I found it hard to find a laptop that had Windows XP, let alone other types of OS - they are all Vista! I admire our friends in Europe and their support for TTLS and cross edu roaming with eduroam. But having years of experience supporting clients, the last thing I would advise an EDU client to do is support a 3rd party client on Microsoft. One patch can ruin your day and users would blame "your" 3rd party app. Not that I don't trust Microsoft... In an environment as diverse EDUs, it's a little scary to support 3rd party apps. So far, I've been a supporter of doing the work on the back end to support PEAP (MS-Chapv2) As for supporting PEAP - there's is always a way to do it but it's not always pretty :-) I call be being a "Microsoft compatible" backend. :-) As for inventing and supporting other EAP types - oh goodness - no... I think we already have a good "collection" to do almost all the things we need to do :-) ... Jonn Martell, Martell Consulting, [EMAIL PROTECTED] www.martell.ca On 2/8/07, Walt Reynolds <[EMAIL PROTECTED]> wrote:
In a conversation I had with Microsoft, it was implied that if there is a demand for it, Microsoft would add TTLSv0 into the native Vista OS. Since there is a lot of talk on the EAP types today, I thought I would post my own question. How many of you out there would like to have TTLSv0 native within Windows. Many out there will of course be using PEAP. But for those out there that don't, or can't, please let me know. As a secondary question, who would be interested if there was some sort of Kerberos EAP (not TTLS with PAP). Thanks. -- Walt Reynolds Principle Systems Security Development Engineer Information Technology Central Services University of Michigan (734) 615-9438 ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.