Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Wireless Security Question

I want to make all of our wireless clients (Win 2000 and XP) dynamically have their connection, vlan, SSID etc to be handed to them when their pc starts up. We have Cisco ACS 4.0 and I would assume I have to use that with 802.1x. I guess what I am confused is with all the different protocols (LEAP, PEAP, EAP-TLS...etc) and which to use. I was looking for any suggestions from other people who have implemented dynamic wireless LAN's.

1 REPLY
New Member

Re: Wireless Security Question

You will be using 802.1x. The different protocols you mentioned are used for authentication. The most secure out of these is EAP-TLS because it uses certifcates with mutual authentication

Looks like you are looking for machine authentication

Read the doc below

http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/wificomp.mspx

for the vlan assignment you can use group attributes

Tunnel-Private-Group-ID you will not see it in by default you need to check this option going into advance

And yes for machine authentication you wd need a registry settings on XP

Are you going to integrate it with Active Directory

109
Views
0
Helpful
1
Replies
CreatePlease to create content