Security Mode Cisco 7921

Unanswered Question
Jul 31st, 2008

What Security mode on the Cisco 7921 is recommended? EAP FAST?



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
migilles Thu, 07/31/2008 - 15:31

Yes is based on customer requirements. If going the 802.1x route, would suggest EAP-FAST, PEAP or EAP-TLS. Can then use WPA or WPA2 depending on the level of security and encryption required. However, when using 802.1x, we recommend to implement CCKM (fast roaming), which is supported only with WPA(TKIP). Some customers rather go with the standards (i.e. PEAP vs EAP-FAST). In the future the 7921, will be able to do server validation as well by installing the authentication server certificate. For EAP-TLS, this requires higher management due to having to issue client certificates.


This Discussion