Re: 802.1x / EAP Validate Server Certificate

Windows Embedded CE 6.0's pages on MSDN do a *much* more-thorough job of
documenting the WZC interface. I think that just about anything that you
find there should be applicable to CE5, also. The code is always the final
word in documentation of what it does...

Paul T.

"Erik Strack" <eriks@xxxxxxxxxxxxx> wrote in message
news:uxis71jeIHA.2000@xxxxxxxxxxxxxxxxxxxxxxx
Thanks, you pointed me in the right direction!

Wish there was more documentation, but this source code should work.


Best regards,

Erik

"Paul G. Tobey [eMVP]" <p space tobey no spam AT no instrument no spam DOT
com> wrote in message news:uvBeTWKdIHA.3400@xxxxxxxxxxxxxxxxxxxxxxx
The WZC user interface has a checkbox for doing the server certificate
validation. You haven't told us much of anything about this device, what
OS it's running, etc. My first attempt would be to figure out what
effect setting or clearing that checkbox has on the device registry,
using the old export-the-registry, change-the-setting,
export-the-registry-and-compare tactic. Or, you could read the source
for the WZC user interface in the NETUI folder (buried), under PUBLIC in
your Windows CE directory.

Paul T.

"Erik Strack" <eriks@xxxxxxxxxxxxx> wrote in message
news:OJvtXYBdIHA.2404@xxxxxxxxxxxxxxxxxxxxxxx
Hello,
Do any of you wireless / 802.1x experts know how to tell the CE EAP
supplicant, for example PEAP, not to validate the server certificate?

I'm using 802.1x with 802.11 (Zero Config service), and I have found
the registry keys and documentation for
HKEY_LOCAL_MACHINE/Comm/EAP/Extension/25/InvokeUserNameDialog etc.

I have also found the keys
HKEY_CURRENT_USER/Comm/EAPOL/Config/[your_SSID]/Password , etc.

However, I can find no way to tell it not to validate the server
certificate. (A very bad security practice, I know, but one some
customers/consumers demand.)

(Also I'm not sure how the PEAP password is encoded, but I'm guessing
regular NT hash.)



Thanks for any pointers.

Best regards,

Erik








.

Relevant Pages

  • Re: 802.1x / EAP Validate Server Certificate
    ... Wish there was more documentation, but this source code should work. ... Best regards, ... supplicant, for example PEAP, not to validate the server certificate? ...
    (microsoft.public.windowsce.embedded)
  • Re: CGI.pm parsing odity
    ... I use a form with GET method, it parses a textfield with name ... I validate that parameter with Perl's substitute and match handlers in ... Have you bothered to read the documentation for the method you are using? ... testing out, reading, testing, reading.. ...
    (comp.lang.perl.modules)
  • Re: disable IE warning message when loading activeX control
    ... there is nothing in the documentation on how to disable this. ... I guess the idea is to click Yes when asked if you want to load the control. ... > Hi Andy, ... Do you have some URL or doc about the registry keys ...
    (microsoft.public.pocketpc.developer)
  • RE: Site audit - validating CD keys
    ... The algorithm used to validate the CD-key and the blacklist is proprietary, therefore, non-public. ... employees used to register their products was a valid CD ... able to provide documentation that the CD key is valid, ... others might not (over the years, moving offices etc, they ...
    (microsoft.public.office.misc)
  • Re: DBD::Informix on Solaris
    ... details for version, configuration below). ... In the database each inserted record gets a unique ... However, in your defense, the documentation in 'perldoc DBD::Informix' ... validate that what is printed by print_sqlca and a statement handle matches ...
    (perl.dbi.users)