disable TLS 1.3? #11

semik · 2019-09-04T06:03:53Z

Disable TLS 1.3 in configuration file passed to eapol_test until it's usage is standartized.

FreeRADIUS/freeradius-server#2385 (comment)

jolly-jump · 2023-01-17T14:52:19Z

Hi.
What is the status of TLS 1.3 ? I can't find enough information as to when it should be standardized.
This seems to trickle down to freeradius (FreeRADIUS/freeradius-server#2385) where the issue was closed due to being tracked elsewhere (here?).
And from freeradius seemingly not being able to support TLS 1.3 it annoys users of Windows 11 22H2 which get TLS 1.3 by default: https://www.reddit.com/r/Windows11/comments/xoqz76/windows_11_22h2_cant_connect_to_enterprise_wifi/

Normally, I wouldn't give a damn about Windows, but just asking the users to pin their installations down to TLS 1.2 seems even to me the wrong kind of advice.

Is TLS 1.3 not supported by freeradius?
Is TLS 1.3 standardized by now?
Is pinning down to 1.2 the only solution in Windows?

Any hints?
Thanks!

jolly-jump · 2023-01-17T15:10:27Z

Maybe, this comment answers at least my first question:
FreeRADIUS/freeradius-server#4124 (comment)
"If you need TLS 1.3, use 3.2.0."

spaetow mentioned this issue Mar 8, 2022

Add -o option as phase1 options. #20

Open

semik closed this as completed Sep 18, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

disable TLS 1.3? #11

disable TLS 1.3? #11

semik commented Sep 4, 2019

jolly-jump commented Jan 17, 2023

jolly-jump commented Jan 17, 2023

disable TLS 1.3? #11

disable TLS 1.3? #11

Comments

semik commented Sep 4, 2019

jolly-jump commented Jan 17, 2023

jolly-jump commented Jan 17, 2023