Authenticating ...
 

Fixed configurations

This is the simplest way to use EAPlab, but also one which does not provide many testing scenarios. You can access our preconfigured RADIUS servers with one username which is common to all. This is mainly useful if you want to test a new device or supplicant software and make sure that it will properly connect when the RADIUS server work correctly. These configurations will not allow you to test how the device will behave when something unexpected happens, like when the server certificate sent by the network does not match the one you have configured on your device. To test such situations you need more customisation, which is provided by other areas of the LAB.

Together with these RADIUS configurations you can also test CAT installers, in particular the generic XML profiles. The servers support a number of EAP methods. The normal CAT setup would be to pick the best EAP method for a given device, to make sure that a maximum variety of devices are supported. This is the best approach to support users, but can be misleading when testing, therefore for EAPlab we have selected another approach. A number of configuration sub-profiles are defined, each supporting just one EAP method. This way you will be sure which EAP method gets configured on your device, or an installer will not be available if a given EAP method is not supported.

Fixed configs

We had to change the Users CA certificate. If you are using TLS certificates you need to download new ones.

While you are welcome to use the basic capabilities of EAPlab without any registration, we strongly advise you to set up an account and be able to do a lot more. You will not be asked to provide any personal data in order to set up your own confguration.

The RADIUS server is available at the address radius.supplicants.net:1812 (150.254.191.209:1812). All RADIUS clients are accepted. The RADIUS secret is sense_is_great.

EAP methods currently supported:
FreeRadius: TTLS-PAP, TTLS-MSCHAPv2, PEAP-MSCHAPv2, EAP-PWD, TLS;
Radiator: TTLS-PAP, TTLS-MSCHAPv2, PEAP-MSCHAPv2, EAP-FAST, TLS.

Provided CAT installers will set SSID SENSE.

You can access three RADIUS configurations:

Single CA
This server has been configured with a certificate provided directly form a root CA.
access with User-Name eaplab@r1.supplicants.net; password eaplab.
For EAP-TLS install the user certificate from this P12 file also protected with passphrase eaplab.
Server certificate name: radius.supplicants.net
You can download the root CA certificate as PEM or DER.

Download CAT installer for this configuration.

CA chain
This server has been configured with a certificate provided from an intermediate CA below a root CA.
access with User-Name eaplab@r2.supplicants.net; password eaplab.
For EAP-TLS install the user certificate from this P12 file also protected with passphrase eaplab.
Server certificate name: radius.supplicants.net
You can download the root CA certificate as PEM or DER and the intermediate CA certificate as PEM or DER.

Download CAT installer for this configuration.

TCS chain
This server has been configured with a certificate provided by the TCS service
access with User-Name eaplab@r3.supplicants.net; password eaplab.
For EAP-TLS install the user certificate from this P12 file also protected with passphrase eaplab.
Server certificate name: supplicants.net
You can download the root CA certificate as PEM or DER first intermediate CA certificate as PEM or DER second intermediate CA certificate as PEM or DER.

Download CAT installer for this configuration.