The latest release of Radiator RADIUS server includes support for EAP-FAST – an EAP authentication protocol invented by Cisco. It is similar to TTLS and PEAP, in that it establishes a TLS tunnel over RADIUS, and through the tunnel, inner EAP authentication protocols (such as EAP-MSCHAPV2 or EAP-GTC) can be used to authenticate the user. In contrast to TTLS and PEAP, there is a mechanism for establishing and distributing Protected Access Credentials (PACs) from a RADIUS server to 802.1X supplicants. These PACs are basically reusable keys to allow EAP-FAST sessions to be reestablished securely.
