I am new to Educause and this is my first message.
Our campus wireless system implements PEAP - MSCHAPv2 on FreeRADIUS 3.0.11 for authentication. This is working very well now for over a year. But during this time I have been noticing that Apple devices initiate the TLS handshake with a "Client Hello" message that declares TLS 1.0. I have seen conflicting and confusing information about what version of TLS is supported by various versions of iOS and OS X. I have been monitoring this situation for about a year, expecting with each new Apple update that I would see the TLS handshake improve to TLS 1.2 but it never does. Tests with Android devices and Windows devices show that they declare for TLS 1.2 in their "Client Hello" message. This can be seen in both the FR logs and in packet captures at the OS. But tests with Macs using OS X 10.11 and with iPhones using iOS 10.2 show them declaring TLS 1.0. Yes, Safari uses TLS 1.2 when establishing an HTTPS connection and the WWDC 2016 emphasized Apple's support of TLS 1.2 and the importance of using 1.2. Yet I can find no evidence that Apple is supporting TLS 1.2 for 802.1X. Mysteriously enough, even though the "Client Hello" declares TLS 1.0, the offered cipher suites include some TLS 1.2 cipher suites, e.g. 0xc027 and 0xc028. But if FR is configured for ONLY TLS 1.2, as soon as it sees the "Client Hello" with 1.0, it sends an Access-Reject. This is not an issue about the security of 1.0 vs 1.2, this is an issue about why I do not see the latest Apple software implementing TLS 1.2 for 802.1X. I am fairly well-versed with the FR configuration options and issues, e.g. we have always used a DH group size of 2048 bits. So, while it is possible that I have a problem in my config, my best guess right now is that this is an issue that can only be resolved by Apple. If you are still with me, thank you. Does anyone see an Apple device using TLS 1.2 in any sort of 802.1X configuration? If so, would you be willing to talk with me off-line so I can understand why you see it and I don't? Or, does anyone have any information of reliable provenance stating what version of TLS Apple supports for 802.1X and why it doesn't support 1.2? Doug Wussler doug.wuss...@fsu.edu ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/discuss.
