packetfence icon indicating copy to clipboard operation
packetfence copied to clipboard

Published 20 hours ago verified publisher icon inverse-inc

Windows 10 eap-tls provisionning issue

Open fdurand opened this issue 2 years ago • 0 comments

Describe the bug On windows 10 when you use the provisionner to provide a eap-tls certificate , the xms profile is missing a ServerName value that prevent the device to connect correctly.

To Reproduce Steps to reproduce the behavior:

  1. Configure PacketFence for windows provisionning
  2. Do the registration process and use the windows application to install the profil
  3. Try to connect on the secure ssid configured by the provisionner
  4. The laptop ask you to validate the connection and it´s not supposed to.

Infos When you export the wireless profile you can see that ServerNames is empty and should contain the radiusd certificate CN value

                                                                        <ServerValidation>
                                                                                <DisableUserPromptForServerValidation>false</DisableUserPromptForServerValidation>
                                                                                <ServerNames></ServerNames>
                                                                                <TrustedRootCA>30 81 12 8c ec 43 09 e8 30 79 55 0f 75 76 09 20 df 56 1a a0</TrustedRootCA>
                                                                        </ServerValidation>

Expected behavior We should append the radius certificate CN value in the profile.xml

fdurand avatar Sep 09 '22 18:09 fdurand