we are currently working on getting an standard architecture into our company regarding WLAN security access.
I would then like to year what do you think about it in terms of security (we are not looking into the state of art security, but a level which may be suficient for an internal company). I would like to ear what auditors may say about that, in case you have already faced such audit.
We have MS Active Directory, and Cisco ACS 4.1, and Cisco Aironet AP's 12xx.
We have sellected PEAP-MSCHAPv2 authentication method, with Selfsigned certificates (generated by Cisco ACS), which we distribute via GPO to computers member of the domain. We also distribute the Network configuration via the same GPO, with the SSID, require certificate verification, etc, etc.
Cisco ACS will then verify if the user is member of a specific AD Group, and in case yes, the WLAN access is granted.
Transferring Crash file from standby:
Login to the Active WLC in HA.
(Cisco Controller) >transfer upload datatype crash
(Cisco Controller) >transfer upload filename <Desired filename>
(Cisco Controller) >transfer up...
This is the start of a display filter cross reference between Wireshark and OmniPeek.
The 1st installment is a table of advanced filters. More filters will be added as time allows.
It is a living doc, so check back for changes every so often
Please feel ...
I have created a Powershell script to automatically add a Wireless Guest User on Cisco WLCs. (tested on 2500 Series)
The script should be completely self explanatory.
Powershell SNMP Module (Install-Module -Name SNMP)
SNMP Write Access to...