802.11i RSN - Master Session Key Generation - How is this derived?
So, When a STA has associated with an AP, and starts the EAP-TLS (or any other EAP method) process, it exhchages its certs mutually bla bla bla, and all is good, we get an eap-sucess message.
Now, in the radius portion of the eap-sucess message, the AS sends the AP (authentication) the MSK that the AS has generated by some means.
Great, AS has an MSK and now can derive the PMK
Now the questions
1. What about the supplicant, what does he use for the MSK?
2. Does the AS send the supplicant the same MSK?
3. If the supplicant and AS are generating different MSKs, is there some sort of link between them that when they dervive their PMKs, the work together?
4. How is the actual MSK derived, is it from the eap-identity-request packets in the early stages of the eap exchange, of if using eap-tls, is another parameter taken from the certificate to generate the MSK?
Transferring Crash file from standby: Login to the Active WLC in HA.
From CLI: (Cisco Controller) >transfer upload datatype crash (Cisco
Controller) >transfer upload filename (Cisco
Controller) >transfer upload mode tftp (Cisco Controller) >transfer
This is the start of a display filter cross reference between Wireshark
and OmniPeek. The 1st installment is a table of advanced filters. More
filters will be added as time allows. It is a living doc, so check back
for changes every so often Please feel f...
I have created a Powershell script to automatically add a Wireless Guest
User on Cisco WLCs. (tested on 2500 Series) The script should be
completely self explanatory. Prerequisites: Powershell SNMP Module
(Install-Module -Name SNMP) SNMP Write Access to y...