Radius authentication question

When i use WAP-TLS as an authentication method for wireless, the user name that is sent is the principle name

username@mydomin.com

however when i use machine authentication the user name is sent as domain/hostname

Now I can still use the princible name if it is in the certificate, but i need the radius username to be in the host@mydomain.com as this is a requirement of a shared wireless network I am a member of.

So my question is, on windows 7 can you when using machine based authentication get it to send the user name in the principle name format?

Cheers

Find more posts tagged with

Save $250 on 2025 certification boot camps from Infosec!

Book now with code EOY2025

Button

Comments

docrice

I assume you meant "EAP-TLS" - the user and domain formatting is typically handled by the RADIUS server. FreeRADIUS, NPS, etc. should have the ability to convert between the user@domain and domain\user forms. I don't remember the specifics off-hand since it's been quite a while since I dealt with .1X, but this is a pretty common issue from what I remember.