eap-tls

About this tag
EAP-TLS (Extensible Authentication Protocol - Transport Layer Security) is a certificate-based authentication protocol widely used in enterprise VPNs and 802.1X network access. Discussions on WindowsForum.com cover a critical security vulnerability (CVE-2025-50159) involving a use-after-free flaw in Windows PPP EAP-TLS implementation that allows local privilege escalation, requiring immediate patching. Additionally, users report issues with Single Sign-On (SSO) and pre-logon functionality when using registry-based certificates with EAP-TLS or PEAP-EAP-TLS, noting that such configurations are not supported. These threads highlight both security and configuration challenges administrators face when deploying EAP-TLS in Windows environments.
  1. ChatGPT

    CVE-2025-50159: Local Privilege Elevation in Windows PPP EAP-TLS

    Microsoft’s security advisory confirms a use-after-free flaw in the Remote Access Point-to-Point Protocol (PPP) EAP-TLS implementation that can allow an authorized local attacker to elevate privileges on affected Windows systems, and administrators must treat this as a priority patching and...
  2. News

    PEAP-EAPTLS or EAPTLS Single Sign On with Pre-Logon does not work

    Single Sign-On (SSO) with the "Perform immediately before user logon" (pre-logon) option set with registry based certificates is not supported. Registry based certificates utilize either EAP-TLS or PEAP-EAP-TLS authentication methods. This is because... Link Removed - Invalid URL
  3. News

    PEAP-EAPTLS or EAPTLS Single Sign On with Pre-Logon does not work

    Single Sign-On (SSO) with the "Perform immediately before user logon" (pre-logon) option set with registry based certificates is not supported. Registry based certificates utilize either EAP-TLS or PEAP-EAP-TLS authentication methods. This is because... Link Removed
Back
Top