If I have a laptop running eap-tls in the following way
laptop ---- ap -----wlc ------cisco acs (radius)
lets say the laptop starts eap-tls when it boots up and exchanges certificates with the acs
If i have no encrytion set on the WLAN, would the whole tls and certificate exchange be readable by a wireless network sniffer?
I really get confused between eap-tls and lets say a web ssl (tls) session
eap-tls is pure authentication, no encrytion?
where when you start an ssl session, lets say with amazon.co.uk, all data within the ssl (tls) session is encrypted
Is anything encrypted when using eap-tls if you use an open network?
Many thx indeed,