Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [802.1x]

10 questions
2
votes
0 answers

Secure Diskless System - NFS as root

I've created a diskless Debian installation with root filesystem over NFS, and boot loader on a USB (this computer has issues booting from PXE for some reason). My setup is similar to the one described on the ArchLinux Wiki. This has been working…
manutenfruits
  • 121
  • 3
1
vote
0 answers

Virtual machines not working with 802.1X - Linux Bridge

I am experimenting 802.1X in my home lab. I have most stuff working but one problem I have is with virtual machines not being able to authentication onto the network using 802.1X. There is very little information online about it but from the odd…
Tipex
  • 31
  • 7
1
vote
1 answer

Still suffering from Windows NPS May 2022 Certficate Update

in May 2022 Microsoft changed the way that client certificates are mapped to AD accounts, causing 802.1X EAP-TLS computer account authentication to stop working. Here is an additional resource with detailed background info on the Schannel<=>Kerbers…
namezero
  • 171
  • 1
  • 8
1
vote
0 answers

How to configure MACSEC Key Agreement (MKA) with hostapd & wpasupplicant?

I'm trying to setup MKA between some clients (using wpa_supplicant) and an authenticator (using hostapd). Additionally I have a RADIUS server(using FreeRADIUS) that is going to be handling the authentication side of things. So: RADIUS server has…
A. Trevelyan
  • 478
  • 1
  • 10
1
vote
0 answers

Any way to do virtual 802.1x inside Linux?

I'm trying to test out 802.1x in a virtual environment but I haven't been able to find any good resources/guides on how to do that. The scenario is something like this: I have a Linux host machine (OS: ubuntu jammy) with a couple of lxc containers…
A. Trevelyan
  • 478
  • 1
  • 10
1
vote
0 answers

802.1x NPS Machine authentication

We are trying to implement 802.1x to authenticate wirelless users (Aruba Controller) through RADIUS (Windows server 2019 NPS), For mobile phones and guests devices, we have successfully configured the authentication via user (AD Account) , but for…
Oualid ZAKOUR
  • 31
  • 3
0
votes
0 answers

Setting up 802.1x for Office Network

I work at a smaller, development-focused company with some more prominent clients. One of these customers had new conditions for contractors, basically forcing us to implement 802.1x for our office. We are currently running a Windows Server as our…
Euklios
  • 101
0
votes
1 answer

Simple way to secure a wired link with 802.1x in "peer to peer" mode without server

I have an Ethernet link between two Linux hosts with a static IP config using systemd-networkd on the both sides without router, DHCP server, etc. Is there a simple way to add a basic 802.1x security with only a shared passphrase (without…
Emeric Verschuur
  • 111
  • 3
0
votes
1 answer

802.1x Wireless with certificates for AADJ/Intune devices without user affinity

I can setup certificate distribution and wireless profiles in Intune for devices with user affinity and this works fine. The user account is synchronised with our on site AD server and NPS has an account to use for permissions. However for…
John Sayce
  • 7
  • 4
0
votes
0 answers

Wireless EAP / Freeradius, is there a way to check Mac Address in LDAP?

So we have EAP-PEAP over MSCHAP working. What I'd like to do is have a MAC Address check, for the purpose of making sure people aren't putting their credentials into random devices. I know SCEP would be the better option here, but this is where…
Jonathan S. Fisher
  • 434
  • 4
  • 19