Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

WPA2 Test Environment

Basically we have been using WEP encryption for the past 2 years within our company. We would like to upgrade to WPA2 encryption along with EAP-TLS. Now, what do we need to setup a WPA2 encryption with EAP-TLS QA test environment.

We'd like to simulate how the process would work.

Thank you,

John.

3 REPLIES
Green

Re: WPA2 Test Environment

You will need some flavor of RADIUS (for EAP-TLS, you can use the Microsoft IAS server, If you are *nix savvy, you can try freeRADIUS - www.freeradius.org or net, I forget).

You will need some flavor of Server-side certificates and some way to issue Client-side certificates. Microsoft Servers also usually include a Certificate Server, it can be the same box as the IAS server. Otherwise, you can subscribe to a Third-Party Certificate Authority (like Verisign).

You will need clients that can support WPA2. Most current Client software that comes with the NICs include a WPA2 compatible driver.

If you are running WindowsXP clients, they need to be up to SP2, and you may (or may not) choose to use the "Wireless Zero Config" as client software.

If you are running *nix clients, you'll probably need a third party supplicant ... some distributions include a semi-open WPA supplicant (may or may not do WPA2).

You will need APs that support EAP, specifically EAP-TLS.

..... and maybe some books. The Microsoft Admin guides for WIN2003 server or SBS have chapters for setting up the server RRAS and IAS. Microsoft also has some white papers on their site. I believe Cisco also has some white papers on their site.

Good Luck

Scott

New Member

Re: WPA2 Test Environment

Thanks for all this information, Scott.

Re: WPA2 Test Environment

If you're looking for a simple way to implement this using Windows IAS and cert services then download this package from Microsoft:

http://www.microsoft.com/downloads/details.aspx?displaylang=en&familyid=cdb639b3-010b-47e7-b234-a27cda291dad

Gives you everything you need, documentation, scripts, etc, etc. Installaion and configuration is a breeze as pretty much everything is scripted!

128
Views
8
Helpful
3
Replies