Dear Sir,
I read on the internet that EAP-TTLS only requires server-side certificates. Then, how does it help in achieving mutual authentication without client-side certificates? Because I know it does mutually authenticate.
Thanks.
-
Solved Doubt in EAP-TTLS
-
Hey @Atharva-Bet , with EAP-TTLS the client-side certificate is optional but not required. Below is a good article on EAP-TTLS as well as EAP-TLS which requires client-side and server-side certificates.
In EAP-TTLS, there is a TLS handshake that requires the client only to obtain the server's public key to establish an encrypted tunnel. Then the client can authenticate through the tunnel (protected from MiTM attacks and eavesdropping) with other authentication protocols such as PAP, CHAP and MS-CHAPv2....which does not require the client-side certificate.
Best Regards,
Wes BryanKnowledge is a road to be traveled upon, not a destination to be reached~~
