PEAP Wpa_supplicant

Jouni Malinen jkmaline at cc.hut.fi
Tue Aug 24 09:47:46 EDT 2004


On Tue, Aug 24, 2004 at 05:59:56PM +0530, Manoj Verma, Noida wrote:

> http://www.cisco.com/en/US/products/hw/wireless/ps430/products_qanda_item091
> 86a008010018c.shtml
>  
> There is a question:
> "Q. What is the difference between the Microsoft PEAP supplicant and the
> Cisco PEAP supplicant?"
> Answer is: The Microsoft PEAP supplicant supports client authentication by
> only MS-CHAP Version 2.....

> This means that MS-PEAP only supports MSChapv2 and not the GTC.
> This point is again emphasized in the page-2, 2nd paragraph last two lines
> of the attached document.
> 
> This contradicts the statement below given by Jouni.

No, it does not. That question is about Microsoft supplicant
implementation, not about the PEAP protocol.. If the Microsoft
implementation does not support more than one inner authentication
method, it does not automatically mean that the protocol does not..

"Microsoft PEAP" is often used with PEAPv0/MS-CHAPv2 and "Cisco PEAP"
with PEAPv1/GTC, but the protocol itself (both v0 and v1) allows any
tunneled EAP method to be used.

-- 
Jouni Malinen                                            PGP id EFC895FA



More information about the HostAP mailing list