diff options
author | Jouni Malinen <j@w1.fi> | 2008-03-09 12:14:15 +0200 |
---|---|---|
committer | Jouni Malinen <j@w1.fi> | 2008-03-09 12:14:15 +0200 |
commit | 502a293e303955f616a61dc4a103c102686b3c90 (patch) | |
tree | 052cf2c43ec88b77e31f31d9ab434a4dd7917136 /hostapd | |
parent | c80a74d70c9a2a21ab7dc0626ed7f1b0eff19520 (diff) | |
download | external_wpa_supplicant_8_ti-502a293e303955f616a61dc4a103c102686b3c90.zip external_wpa_supplicant_8_ti-502a293e303955f616a61dc4a103c102686b3c90.tar.gz external_wpa_supplicant_8_ti-502a293e303955f616a61dc4a103c102686b3c90.tar.bz2 |
TNC: Added TNC server support into documentation and ChangeLogs
Diffstat (limited to 'hostapd')
-rw-r--r-- | hostapd/ChangeLog | 4 | ||||
-rw-r--r-- | hostapd/defconfig | 3 | ||||
-rw-r--r-- | hostapd/eap_testing.txt | 3 | ||||
-rw-r--r-- | hostapd/hostapd.conf | 6 |
4 files changed, 16 insertions, 0 deletions
diff --git a/hostapd/ChangeLog b/hostapd/ChangeLog index 9601112..84a3ce5 100644 --- a/hostapd/ChangeLog +++ b/hostapd/ChangeLog @@ -4,6 +4,10 @@ ChangeLog for hostapd * added peer identity into EAP-FAST PAC-Opaque and skip Phase 2 Identity Request if identity is already known * added support for EAP Sequences in EAP-FAST Phase 2 + * added support for EAP-TNC (Trusted Network Connect) + (this version implements the EAP-TNC method and EAP-TTLS/EAP-FAST + changes needed to run two methods in sequence (IF-T) and the IF-IMV + and IF-TNCCS interfaces from TNCS) 2008-02-22 - v0.6.3 * fixed Reassociation Response callback processing when using internal diff --git a/hostapd/defconfig b/hostapd/defconfig index 56ecfc6..623f86a 100644 --- a/hostapd/defconfig +++ b/hostapd/defconfig @@ -101,6 +101,9 @@ CONFIG_EAP_TTLS=y # EAP-IKEv2 #CONFIG_EAP_IKEV2=y +# Trusted Network Connect (EAP-TNC) +#CONFIG_EAP_TNC=y + # PKCS#12 (PFX) support (used to read private key and certificate file from # a file that usually has extension .p12 or .pfx) CONFIG_PKCS12=y diff --git a/hostapd/eap_testing.txt b/hostapd/eap_testing.txt index c0516bc..04468c3 100644 --- a/hostapd/eap_testing.txt +++ b/hostapd/eap_testing.txt @@ -49,6 +49,7 @@ EAP-TTLS/EAP-MSCHAPv2 + + - - - EAP-TTLS/EAP-TLS + F - - - EAP-TTLS/EAP-SIM + + - - - EAP-TTLS/EAP-AKA + + - - - +EAP-TTLS + TNC + - - - - EAP-SIM + + - - + EAP-AKA + + - - - EAP-PAX + - - - - @@ -67,7 +68,9 @@ EAP-FAST/MD5(auth) + - + - - EAP-FAST/TLS(auth) + - - - - EAP-FAST/SIM(auth) + - - - - EAP-FAST/AKA(auth) + - - - - +EAP-FAST + TNC + - - - - EAP-IKEv2 + - - - - +EAP-TNC + - - - - 1) EAP-TLS itself worked, but peer certificate validation failed at least when using the internal TLS server (peer included incorrect diff --git a/hostapd/hostapd.conf b/hostapd/hostapd.conf index 3c9fc65..1d8bfa7 100644 --- a/hostapd/hostapd.conf +++ b/hostapd/hostapd.conf @@ -490,6 +490,12 @@ eap_server=0 # (default: 0 = disabled). #eap_sim_aka_result_ind=1 +# Trusted Network Connect (TNC) +# If enabled, TNC validation will be required before the peer is allowed to +# connect. Note: This is only used with EAP-TTLS and EAP-FAST. If any other +# EAP method is enabled, the peer will be allowed to connect without TNC. +#tnc=1 + ##### IEEE 802.11f - Inter-Access Point Protocol (IAPP) ####################### |