Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PEAP With other Wireless vendors

I currently have about 75 AP 350's at all of my locations. I am currently running LEAP but it is restricted to 350 nic's only. Our company has decided to buy laptops with built in NIC's (true moble) These will not work with LEAP. Will i be able to solve this problem with PEAP?

7 REPLIES
New Member

Re: PEAP With other Wireless vendors

I am curious about the exact same question. What is the best authentication method to be able to support built-in wireless nic's - or wireless nic's other than Cisco's. I am also going to have to support various operating systems besides MS (like MacOS and possibly some Linux flavors).

Thanks,

Don Hickey

Cisco Employee

Re: PEAP With other Wireless vendors

If you run windows XP then there is native PEAP support in the OS and this makes it indpendant of the wireless card vendor.

If you have NON XP machines there are some 3rd party PEAP suplicants avialable

If you use Mac OS and Airport cards then they support Cisco LEAP

I am not aware of a PEAP suplicant for linux but you are best to talk to some of the 3rd parties doing PEAP suplicants as to what OS's they support and whats on the roadmap

Some laptops being sold with built in WLAN cards use Cisco cards such as the IBM T30 so check out the specs of the laptop

New Member

Re: PEAP With other Wireless vendors

Can you list some of the 3rd party PEAP supplicant vendors, please?

Cisco Employee

Re: PEAP With other Wireless vendors

You can have Microsoft peap supplicant or Cisco Peap supplicant .

If you have windows 2000 OS , than if you load service pack3 , Microsoft peap supplicant is installed . On top of this if you install ACU 5.05 microsoft supplicant wil be overwritten by Cisco supplicant .

In case of XP , if you install service pack 1 , it will install microsoft peap supplicant , if you install ACU 5.05 it will be overwriteen by Cisco Peap supplicant .

Microsoft peap supplicant send eap-Chap in EAP tunnel and Cisco support EAP-GTC in eap tunnel .

So if you have non cisco card , depending on the radius server databse you use will decide if peap will work or no .

At present ACS 3.1 supports EAP-GTC so it will not interoperate with Microsoft supllicant . In later release ACS will have support for EAP-Chap so

that you can use 3rd party card with Microsoft supplicant and ACS3.2

Meeting house company has supplicant for eap tls on windows 2000 but I am not sure for PEAP . Please chech meetinghouse site for this .

http://www.cisco.com/warp/public/779/smbiz/wireless/wlan_security.shtml

http://www.cisco.com/en/US/products/hw/wireless/ps430/prod_technical_reference09186a008014626b.html

New Member

Re: PEAP With other Wireless vendors

How do you get windows to authenticate the PEAP certificate before login to the machine? I am able to auth peap if i log into a cached account. But that does me no good when i am trying to login to a domain. Any suggestions anyone?

Cisco Employee

Re: PEAP With other Wireless vendors

Q. Does PEAP provide single-login to Windows domains for password or OTP?

A. No. PEAP does not provide credential caching. Any logins to Windows NT file systems will be separate and subsequent to PEAP login.

New Member

Re: PEAP With other Wireless vendors

not to be redundant, but there is no way to initiate a PEAP login before system login (ie. Press cntrl alt delete to login)?

149
Views
8
Helpful
7
Replies