cat-users AT lists.geant.org
Subject: The mailing list for users of the eduroam Configuration Assistant Tool (CAT)
List archive
- From: Matthew Slowe <matthew.slowe AT jisc.ac.uk>
- To: cat-users AT lists.geant.org
- Subject: Re: [[cat-users]] CAT fixes for Windows
- Date: Thu, 19 Jan 2023 14:19:27 +0000
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=jisc.ac.uk; dmarc=pass action=none header.from=jisc.ac.uk; dkim=pass header.d=jisc.ac.uk; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=S3dTy/wrX+84bxp58/pHWe30j+Gj6BWJD0zt+1+8QLg=; b=Kr7M/TSSmmNfQYcL3dA5ixHRtm06r8Iq0trKF3fwaml5jb8XP5nlzYy6+lMbHFwuMaRBMcCrsuvtLPqhccHWBFH0L4/sF2Ax6W6GIQDC4xSl2BNTH3nqIoakTrwWbk0SDadPa6rasik83Oewi+yiQqo8wkkKQINTf6phKzYW23WAK9fFy1vbD+NvaJeKXJT0PTdQMxuty0FKaTosMWY4T6q6xISArASPN3e3348u3wlUKObImAq0OZOij4S2+T40naH9RP9Z3v+1PzDN/vHdYyNwAktr8tVDQrS8UrDA7wvo6VmP8sk5DAxVBnSj0lUDKkviyUo0Ijg+FIsjkwOqZg==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=dtY7dkv9qcfimGwn2Wgw6j98tkTKoKQaOPjzFNe6TCdfPENO6Br0CKs1+t4U2YoiOqXEYGSu0OAluoNJSS4p0kwRDOcvBZO2vGMZTgKO/fluZ+ln+hocXG4RWF8gcN2kj5SHreEc0TLhH60sjoBN/bIRSvIiyxWEtF5QDD76Lqqjah2B/z2/nqWteJ1R8Yv9B1rA6NJEX5COfDRe2+tuE0Bf/LxOrrjylJBFSS4VVB/wXtskjM3KFDhRl/9TgxI4+m9BbRDKqgWo7yVtSsnoJy3hgq6OI/KbAlFOLVq5/C51vyt1ICTtu5IPmK1xXQDXgvNNDjYG6rdu5OUWO1Ehpw==
- Authentication-results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=jisc.ac.uk;
- Organization: Jisc
On 19/09/2022 11:06, Tomasz Wolniewicz (via cat-users Mailing List) wrote:
1. For PEAP - there was a problem manifesting itself for organisations which have defined the empty username part of the outer name. This was causing an installation error.
Hi Tomasz,
I have a member organisation that's using the "Enable Anonymous Outer Identity" setting (set to an empty string, so we expect " AT example.edu" as an outer identity).
During install users enter an internal only UPN into the username box (eg. user AT example.local) to be used in the Inner credential exchange. This works fine on macos, iOS and Android.
They're reporting a problem on Windows (specifically Windows 10 but may not be limited to that) where it's setting the "Enable Identity Privacy" setting in the PEAP settings but the outer username is being sent as:
@example.local
It appears to be getting it _half_ right... anonymous yes, but wrong outer realm!
Not sure if this is related to your fixes in September, but it's suspiciously close!
Any ideas?
Thanks,
--
Matthew Slowe [he/him] (GPG: 0x6BE0CF7D04600314)
Principal technical consultant and infrastructure specialist, Jisc
Team: 01235 822185
Lumen House, Library Avenue, Harwell Oxford, Didcot, OX11 0SG
- Re: [[cat-users]] CAT fixes for Windows, Matthew Slowe, 01/19/2023
- Re: [[cat-users]] CAT fixes for Windows, Tomasz Wolniewicz, 01/19/2023
- Re: [[cat-users]] CAT fixes for Windows, Chris Phillips, 01/19/2023
- Re: [[cat-users]] CAT fixes for Windows, Daniele Albrizio, 01/20/2023
- Re: [[cat-users]] CAT fixes for Windows, Matthew Slowe, 01/20/2023
- Re: [[cat-users]] CAT fixes for Windows, Daniele Albrizio, 01/20/2023
- Re: [[cat-users]] CAT fixes for Windows, Chris Phillips, 01/19/2023
- Re: [[cat-users]] CAT fixes for Windows, Tomasz Wolniewicz, 01/19/2023
- Re: [[cat-users]] CAT fixes for Windows, Matthew Slowe, 01/19/2023
- Re: [[cat-users]] CAT fixes for Windows, Tomasz Wolniewicz, 01/19/2023
Archive powered by MHonArc 2.6.19.