339 lines
4.9 KiB
HTML
339 lines
4.9 KiB
HTML
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
|
|
<HTML
|
|
><HEAD
|
|
><TITLE
|
|
>FAQ</TITLE
|
|
><META
|
|
NAME="GENERATOR"
|
|
CONTENT="Modular DocBook HTML Stylesheet Version 1.7"><LINK
|
|
REL="HOME"
|
|
TITLE="802.1X Port-Based Authentication HOWTO"
|
|
HREF="index.html"><LINK
|
|
REL="PREVIOUS"
|
|
TITLE="Note about driver support and Xsupplicant"
|
|
HREF="dynwep.html"><LINK
|
|
REL="NEXT"
|
|
TITLE="Useful Resources"
|
|
HREF="resources.html"></HEAD
|
|
><BODY
|
|
CLASS="sect1"
|
|
BGCOLOR="#FFFFFF"
|
|
TEXT="#000000"
|
|
LINK="#0000FF"
|
|
VLINK="#840084"
|
|
ALINK="#0000FF"
|
|
><DIV
|
|
CLASS="NAVHEADER"
|
|
><TABLE
|
|
SUMMARY="Header navigation table"
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TH
|
|
COLSPAN="3"
|
|
ALIGN="center"
|
|
>802.1X Port-Based Authentication HOWTO</TH
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="left"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="dynwep.html"
|
|
ACCESSKEY="P"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="80%"
|
|
ALIGN="center"
|
|
VALIGN="bottom"
|
|
></TD
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="right"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="resources.html"
|
|
ACCESSKEY="N"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
></TABLE
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"></DIV
|
|
><DIV
|
|
CLASS="sect1"
|
|
><H1
|
|
CLASS="sect1"
|
|
><A
|
|
NAME="faq"
|
|
></A
|
|
>8. FAQ</H1
|
|
><P
|
|
> Do not forget to check out the FAQ section of both the <A
|
|
HREF="http://www.freeradius.org/faq/"
|
|
TARGET="_top"
|
|
>FreeRADIUS</A
|
|
> (highly
|
|
recommended!) and <A
|
|
HREF="http://sourceforge.net/docman/display_doc.php?docid=23371&group_id=60236#ch7"
|
|
TARGET="_top"
|
|
> Xsupplicant</A
|
|
> Web sites!
|
|
</P
|
|
><DIV
|
|
CLASS="qandaset"
|
|
><DL
|
|
><DT
|
|
>8.1. <A
|
|
HREF="faq.html#AEN626"
|
|
> Is it possible to allow user-specific
|
|
<SPAN
|
|
CLASS="application"
|
|
>Xsupplicant</SPAN
|
|
> configuration, to avoid
|
|
having a global configuration file?
|
|
</A
|
|
></DT
|
|
><DT
|
|
>8.2. <A
|
|
HREF="faq.html#AEN632"
|
|
>I don't want to use PEAP; can I use EAP-TTLS or EAP-TLS instead?</A
|
|
></DT
|
|
><DT
|
|
>8.3. <A
|
|
HREF="faq.html#AEN637"
|
|
> Can I use a Windows Supplicant (client) instead of GNU/Linux?
|
|
</A
|
|
></DT
|
|
><DT
|
|
>8.4. <A
|
|
HREF="faq.html#AEN643"
|
|
> Can I use a Active Directory to authenticate users?
|
|
</A
|
|
></DT
|
|
><DT
|
|
>8.5. <A
|
|
HREF="faq.html#AEN649"
|
|
> Is there any Windows Supplicant clients available?
|
|
</A
|
|
></DT
|
|
></DL
|
|
><DIV
|
|
CLASS="qandaentry"
|
|
><DIV
|
|
CLASS="question"
|
|
><P
|
|
><A
|
|
NAME="AEN626"
|
|
></A
|
|
><B
|
|
>8.1. </B
|
|
>
|
|
Is it possible to allow user-specific
|
|
<SPAN
|
|
CLASS="application"
|
|
>Xsupplicant</SPAN
|
|
> configuration, to avoid
|
|
having a global configuration file?
|
|
</P
|
|
></DIV
|
|
><DIV
|
|
CLASS="answer"
|
|
><P
|
|
><B
|
|
> </B
|
|
>
|
|
No, not at the moment.
|
|
</P
|
|
></DIV
|
|
></DIV
|
|
><DIV
|
|
CLASS="qandaentry"
|
|
><DIV
|
|
CLASS="question"
|
|
><P
|
|
><A
|
|
NAME="AEN632"
|
|
></A
|
|
><B
|
|
>8.2. </B
|
|
>I don't want to use PEAP; can I use EAP-TTLS or EAP-TLS instead?</P
|
|
></DIV
|
|
><DIV
|
|
CLASS="answer"
|
|
><P
|
|
><B
|
|
> </B
|
|
>
|
|
Yes. To use EAP-TTLS, only small changes to the configuration used
|
|
in this document are required. To use EAP-TLS, client certificates
|
|
must be used as well.
|
|
</P
|
|
></DIV
|
|
></DIV
|
|
><DIV
|
|
CLASS="qandaentry"
|
|
><DIV
|
|
CLASS="question"
|
|
><P
|
|
><A
|
|
NAME="AEN637"
|
|
></A
|
|
><B
|
|
>8.3. </B
|
|
>
|
|
Can I use a Windows Supplicant (client) instead of GNU/Linux?
|
|
</P
|
|
></DIV
|
|
><DIV
|
|
CLASS="answer"
|
|
><P
|
|
><B
|
|
> </B
|
|
>
|
|
Yes. Windows XP SP1/Windows 2000 SP3 has support for PEAP MSCHAPv2
|
|
(used in this document). A Windows HOWTO can be found here: <A
|
|
HREF="http://text.dslreports.com/forum/remark,9286052~mode=flat"
|
|
TARGET="_top"
|
|
>FreeRADIUS/WinXP
|
|
Authentication Setup</A
|
|
>
|
|
</P
|
|
></DIV
|
|
></DIV
|
|
><DIV
|
|
CLASS="qandaentry"
|
|
><DIV
|
|
CLASS="question"
|
|
><P
|
|
><A
|
|
NAME="AEN643"
|
|
></A
|
|
><B
|
|
>8.4. </B
|
|
>
|
|
Can I use a Active Directory to authenticate users?
|
|
</P
|
|
></DIV
|
|
><DIV
|
|
CLASS="answer"
|
|
><P
|
|
><B
|
|
> </B
|
|
>
|
|
Yes. FreeRADIUS can authenticate users from AD by using
|
|
<SPAN
|
|
CLASS="QUOTE"
|
|
>"ntlm_auth"</SPAN
|
|
>.
|
|
</P
|
|
></DIV
|
|
></DIV
|
|
><DIV
|
|
CLASS="qandaentry"
|
|
><DIV
|
|
CLASS="question"
|
|
><P
|
|
><A
|
|
NAME="AEN649"
|
|
></A
|
|
><B
|
|
>8.5. </B
|
|
>
|
|
Is there any Windows Supplicant clients available?
|
|
</P
|
|
></DIV
|
|
><DIV
|
|
CLASS="answer"
|
|
><P
|
|
><B
|
|
> </B
|
|
>
|
|
Yes. As of Windows XP SP1 or Windows 2000 SP3, support for WPA
|
|
(PEAP/MS-CHAPv2) is supported. Other clients include (not tested)
|
|
<A
|
|
HREF="http://www.securew2.com"
|
|
TARGET="_top"
|
|
>Secure W2</A
|
|
> (free for
|
|
non-commercial) and <A
|
|
HREF="http://wire.cs.nthu.edu.tw/wire1x/"
|
|
TARGET="_top"
|
|
>WIRE1X</A
|
|
>. <A
|
|
HREF="http://www.funk.com"
|
|
TARGET="_top"
|
|
>Funk Software</A
|
|
> also has a
|
|
commercial client available.
|
|
</P
|
|
></DIV
|
|
></DIV
|
|
></DIV
|
|
></DIV
|
|
><DIV
|
|
CLASS="NAVFOOTER"
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"><TABLE
|
|
SUMMARY="Footer navigation table"
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="dynwep.html"
|
|
ACCESSKEY="P"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="index.html"
|
|
ACCESSKEY="H"
|
|
>Home</A
|
|
></TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="resources.html"
|
|
ACCESSKEY="N"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
>Note about driver support and Xsupplicant</TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
> </TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
>Useful Resources</TD
|
|
></TR
|
|
></TABLE
|
|
></DIV
|
|
></BODY
|
|
></HTML
|
|
> |