Re: SBS / Vista / Wireless
- From: Owen Williams [SBS MVP] <Owen@xxxxxxxxxxxxxxxxxx>
- Date: Wed, 1 Aug 2007 23:49:43 -0400
In article <OHdFwAI1HHA.5764@xxxxxxxxxxxxxxxxxxxx>,
aart@*remove*hayes.co.nz says...
Thanks, instead I just disabled the IAS / certs and made the wireless access
point use WPA-PSK with TKIP using a manually set key.
WPA-PSK usually works fine, but in my opinion it's only a good solution
for homes or VERY small business use where there are only 1 or 2
wireless devices. Make sure your pre-shared key is at least 20
characters long. I use a random password generator to create these.
That said, I have seen some reports that WPA-PSK is not 100% wired-LAN
equivalent. (It seems to depend on NIC drivers.) Using EAP-TLS
documented in http://home.comcast.net/~clearviewtc, the wireless network
is wired-equivalent. For example, computer GPOs, login scripts, RWW
remote desktop, and WSUS updates all work the same as they do on wired
LANs.
Also, I recommend you use AES encryption rather than TKIP if your WAP/
wireless router AND wireless NIC(s) support that. TKIP with a static
key is more susceptible to cracking than AES. With dynamic keys, it's
less of an issue.
-- Owen Williams (SBS MVP)
.
- Follow-Ups:
- Re: SBS / Vista / Wireless
- From: Robert Li [MSFT]
- Re: SBS / Vista / Wireless
- References:
- RE: SBS / Vista / Wireless
- From: Robert Li [MSFT]
- Re: SBS / Vista / Wireless
- From: Aart Jansen
- RE: SBS / Vista / Wireless
- Prev by Date: Re: SBS / Vista / Wireless
- Next by Date: RE: NT Backup Started but error occurs at night
- Previous by thread: Re: SBS / Vista / Wireless
- Next by thread: Re: SBS / Vista / Wireless
- Index(es):
Relevant Pages
|
Loading
