Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Dual-authentication method for dial access.

I am currently working on a dual-authentication method for remote access dialup users to meet a security audit requirement. From my research I have found that eap-tls would probably be the best method for securing the dial access authentication but I want to verify some things. Would using eap-tls with a security certificate truly be considered dual authentication? Or would I actually need to look at the smart-card as a viable component to this solution? I have found little suggestion one way or another from research that I have performed. Based on a Microsoft review they claim that certificate based in only single-factor authentication while smart-card is two-factor.

Thanks for any suggestions.

David

1 REPLY
Silver

Re: Dual-authentication method for dial access.

Eap-Tls doesn't prompt for the username and password as authentication is based on cn or san or binary comparision

151
Views
0
Helpful
1
Replies
CreatePlease login to create content