10-27-2006 01:54 AM - edited 07-03-2021 01:09 PM
Dear Everyone
I work for a company with about 300 wireless users and 15 access points installed.
Currently I use LEAP authentication as security, which authorizes by username and
password, and thereafter it checks if MAC address is recorded in access list in
RADIUS , and then it establishes a connection.
My question is, is there any other method of AAA in order to increase security ? ,
on WiAPs, on RADIUS or in any other place.
Let's discuss this, and see if I use good AAA for network to be invulnerable as is available
11-02-2006 06:44 AM
LEAP is succeptable to dictionary attacks , but PEAP or EAP-TLS which are certificate based authentication types will be good.If ease of implementation is what you want then LEAP can be used
11-02-2006 07:26 AM
More on the PEAP and EAP-TLS. With PEAP, the certificate is only on the AAA server, you can do some validation so long as the client has a trust of the ROOT CA that issued the PEAP certificate. In EAP-TLS, the certificate is on the client as well as the AAA server. There are pros and cons to both, and I would recommend reading up on them.
Application Note for PEAP:
EAP-TLS Deployment Guide:
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide