Re: [88attendees] WPA2 Enterprise WiFi?

Chris Elliott <chelliot@pobox.com> Fri, 08 November 2013 20:18 UTC

Return-Path: <chelliot@gmail.com>
X-Original-To: 88attendees@ietfa.amsl.com
Delivered-To: 88attendees@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C2E5321E8179 for <88attendees@ietfa.amsl.com>; Fri, 8 Nov 2013 12:18:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.705
X-Spam-Level:
X-Spam-Status: No, score=-0.705 tagged_above=-999 required=5 tests=[AWL=1.272, BAYES_00=-2.599, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, NO_RELAYS=-0.001]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GUTAbplAMfIJ for <88attendees@ietfa.amsl.com>; Fri, 8 Nov 2013 12:18:20 -0800 (PST)
Received: from mail-la0-x232.google.com (mail-la0-x232.google.com [IPv6:2a00:1450:4010:c03::232]) by ietfa.amsl.com (Postfix) with ESMTP id 6266D21E81C1 for <88attendees@ietf.org>; Fri, 8 Nov 2013 12:18:16 -0800 (PST)
Received: by mail-la0-f50.google.com with SMTP id eo20so2315067lab.9 for <88attendees@ietf.org>; Fri, 08 Nov 2013 12:18:15 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:reply-to:sender:in-reply-to:references:from:date :message-id:subject:to:cc:content-type; bh=s04W59xxOXSde3NTGoUdbci9whejamFbMNKXDWmGNt8=; b=uZ/i1EWDH2T8ETTzdnPFfmhDteN0j2BxN4C1P+CihHxQbF3CbtbQQJx0NN4bOi6767 ffdjikGuncTvmjkGYXKvXwizJcy0on0Ppi4LXoI3RBkaElBz/yf2C6S3V3AUZO3tEa5y 2VvpzRnY2qMtX6f/HflaW8YICfD7w+WWX5PzPnfWp7WYFBl3YDNXsLsoHg3+lgscI9BP AbdmxR0thX3d/BM7S7oBxDdjwUUb1Swi+h1mEFTQAUZjAhSXwmVCuXLGI9cUgJXpi9qi fwpI5aTy51+PKTEyK4zJ5cnKMCufXTvmEub1BoDbsuyvYGBal/MmtT792bWKAX4A0VA3 UJyA==
X-Received: by 10.152.184.198 with SMTP id ew6mr2778132lac.34.1383941895397; Fri, 08 Nov 2013 12:18:15 -0800 (PST)
MIME-Version: 1.0
Sender: chelliot@gmail.com
Received: by 10.114.211.164 with HTTP; Fri, 8 Nov 2013 12:17:54 -0800 (PST)
In-Reply-To: <527D451B.7040409@sidn.nl>
References: <527D3AB4.40600@sidn.nl> <0E3993B6-CBCF-467B-B5D6-A0BCE581FBD4@gmail.com> <527D451B.7040409@sidn.nl>
From: Chris Elliott <chelliot@pobox.com>
Date: Fri, 08 Nov 2013 12:17:54 -0800
X-Google-Sender-Auth: V5IB0tVJNrjJDVHkVoxNQvtoIeI
Message-ID: <CAO_RpcLywWaA4HQwt47C8nF95qyNrYYx16V9zUEk4anNTYZCcg@mail.gmail.com>
To: "Marco Davids (SIDN)" <marco.davids@sidn.nl>
Content-Type: multipart/alternative; boundary="001a1134693a10a7de04eab015b8"
Cc: joel jaeggli <joelja@gmail.com>, "88attendees@ietf.org" <88attendees@ietf.org>
Subject: Re: [88attendees] WPA2 Enterprise WiFi?
X-BeenThere: 88attendees@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: chelliot@pobox.com
List-Id: "Mailing list of IETF 88 attendees that have opted in to the list." <88attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/88attendees>, <mailto:88attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/88attendees>
List-Post: <mailto:88attendees@ietf.org>
List-Help: <mailto:88attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/88attendees>, <mailto:88attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 08 Nov 2013 20:18:25 -0000

Marco,

Joel was using outdated data. We indeed did hack free radius to accept any
credentials years ago, but we are using radiator now for authentication,
and it only accepts ietf/ietf as the credentials.

Chris.


On Fri, Nov 8, 2013 at 12:10 PM, Marco Davids (SIDN)
<marco.davids@sidn.nl>wrote:

> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> On 08/11/13 12:00, joel jaeggli wrote:
>
> > wpa2 enterprise is in fact deployed at the IETF.
> >
> > ietf.1x and ietf-a.1x
> >
> > The radius server that supports the .1x ssids accepts any
> > credentials as valid.
>
> Is that so? So I can use whatever random strings I want, not just
> 'ietf,ietf' ? But that's fantastic (and cleverly done).
>
> (Now I finally understand why the SSID is .1x  ;-)
>
> Thanks
>
> - --
> Marco
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG/MacGPG2 v2.0.17 (Darwin)
> Comment: GPGTools - http://gpgtools.org
> Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
>
> iEYEARECAAYFAlJ9RRoACgkQ0dvyGJ94G1IvNACfa4CBTA9zPOqCF9YAzycuwnNx
> UaYAoKMx9r7P7tpKtQWkE3GAoXj4TZaO
> =qP1X
> -----END PGP SIGNATURE-----
> _______________________________________________
> 88attendees mailing list
> 88attendees@ietf.org
> https://www.ietf.org/mailman/listinfo/88attendees
>



-- 
Chris Elliott
chelliot@pobox.com