Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
The following diagram depicts a complete PEAP authentication in which phase 1 completes successfully and phase 2 fails on the PEAP server side, with both the PEAP server and the peer not supporting cryptobinding and SoH TLVs.
This example is similar to the one described in section 4.1.1; however, note that the EAP Extensions Method with the Result TLV is a failure rather than a success, and the EAP failure packet is sent outside the TLS session.
Figure 7: Successful PEAP phase 1 with failed phase 2 negotiation