|
OpenBSD General Other questions regarding OpenBSD which do not fit in any of the categories below. |
|
Thread Tools | Display Modes |
|
|||
IEEE_802.1X
Hello.
Can I use 802.1X authentication (en.wikipedia.org/wiki/IEEE_802.1X) with MSCHAP for my "hardware" network card on OpenBSD. |
|
||||
Hello, and welcome!
802.1x authentication is available, via a port of the Linux WPA/WPA2/IEEE Supplicant -- the leaf of the ports tree is security/wpa_supplicant, available as a package from a nearby mirror. See this OpenBSD Journal article for an example use case. I have never used it, but I understand it supports MSCHAPv2. |
|
|||
Thank you!
it works I add to wpa_supplicant config network={ ssid="" key_mgmt=IEEE8021X eap=PEAP ca_cert="/etc/ssl/certs/my.cer" phase2="auth=MSCHAPV2" identity="user" password="password" } and to /etc/rc.conf.local pkg_scripts="${pkg_scripts} wpa_supplicant" wpa_supplicant_flags="-c /etc/wpa_supplicant.conf -D wired -i re0" after dhclient re0 I got authentication |
|
|||
According to https://en.wikipedia.org/wiki/MS-CHAP MS-CHAPv2 has some serious security flaws
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump |
|
|