Re: 802.1x Authentication Question
- From: "Eric J." <bt_hirosaito@xxxxxx>
- Date: 26 Jul 2006 02:14:59 -0700
hi andy,
in the end its all upon your choice. EAP-TLS is more secure cause of
client certificates, but PEAP is a bit easier to set up.
but you have to think first if it will be possible for all users to get
a machine certificate on their clients. so its usually easier to manage
all these passwords for PEAP.
One problem of PEAP is also, that you have to change the 802.1x
settings on your NIC. its default on authentication via EAP-TLS...
maybe you can give some more information about your company ? what kind
of users, many guests, what about printers etc.
hope that helps a bit :)
Greetz Eric
Andy schrieb:
Hi All,
I am setting 802.1x for wired and wireless network using IAS 2000 as RADIUS
server. My goal is to prevent users from bringing their laptops, APs or
Switches in and use their logins to grant access to the company network. I am
not sure which authentication method is a approriated choice for me either
PEAP-MSCHAP-V2 or EAP-TLS
Please advice
Thanks,
--
Andy
.
- Prev by Date: Re: IAS CRL Configuration
- Next by Date: 802.1x without encryption ?
- Previous by thread: Re: IAS server Max
- Next by thread: Re: 802.1x Authentication Question
- Index(es):
Relevant Pages
|
Loading
