Forum Replies Created

Viewing 3 posts - 1 through 3 (of 3 total)
  • Author
    Posts
  • April 2, 2009 at 4:41 am in reply to: 802.fail #375892
    tegbains
    Participant

    I hate saying this, but it’s Apple’s fault in the way they played around with FreeRADIUS in 10.5 server.

    I believe, that in order to use 802.1X easily Apple is using TTLS, which means your server needs a Certificate. If you use a self-signed cert, that your Mac clients will, correctly, not trust it. So you go and buy a certificate. Download it and install it into the System keychain on your server. The web server sees it. But RADIUS will sometimes have a spazz over the certificate. And even with a trusted cert, your clients can still complain if the certificate chain didn’t get installed correctly on the server with RADIUS.

    If you add the certificate to the System keychain manually on your Mac laptops and tell it to always trust the cert, then it will make your life easy. Not the correct way to do it, but…

    Or use Electron’s Radius server…

    April 2, 2009 at 4:35 am in reply to: Would you put a fully patch Leopard Server outside the firewall? #375890
    tegbains
    Participant

    I’m not a fan of Apple’s DNS server UI. Instead I use MacPort’s BIND coupled with Webmin to use Views. It works quite well, but it requires some knowledge of BIND.

    An opensource firewall that I find useful is pfSense. It’s based on FreeBSD with OpenBSD’s pf. Really nice Web based GUI. It runs on regular x86 hardware.

    http://www.pfsense.org

    September 28, 2002 at 5:45 am in reply to: Does CommuniGate Pro run under Mac OS X Server 10.2? #354623
    tegbains
    Participant

    I’m using the latest 3.x Release of CGPro on 10.2 Server without any issues.

  • Author
    Posts
Viewing 3 posts - 1 through 3 (of 3 total)
Copyright © 2024 AFP548. All Rights Reserved.