On Jul 1, 2021, at 10:08 AM, Eliot Lear <l...@lear.ch> wrote: > > On 01.07.21 15:23, Alan DeKok wrote: >> TEAP is one solution, but I don't think everyone is going to move to TEAP >> overnight. It would be nice to have solutions for existing (and deployed) >> EAP methods. > > Perhaps I lost the plot, but what do you propose?
Less of a proposal than trying to define some requirements. EAP isn't used in a vacuum. The current specs define the base protocols, but leave pretty much everything else undefined. This means that people deploying EAP have to invent and/or discover their own methods to deploy certificates, tie users to machines, tie machines to credentials, etc. It would be very nice to say "here's how EAP can be used in the real world". Alan DeKok. _______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu