I'm using freeRADIUS-1.02 as an Authentication Server for my Wireless LAN. I've read "802.1X
Port-Based Authentication HOWTO" and I'm still wondering some thing:
- What are differences between "unicast key" and "multicast/global key". If unicast key is used
for encrypting per-client data and if I have 20 client, does that mean Access Point must hold all
20 per-client unicast key? And if multicast/global key is used for encrypting multicast/broadcast
traffic, does that mean we have to pre-configure the key in Access Point?
- Can someone explain me about "4-way handshake" and how a client derives 128-bits key for
Encryption and 64-bits key for MIC.
- I want to authenticate my clients with ComputerName\\UserName and i configured my
radiusd.conf like below:
realm ntdomain {
format = prefix
delimiter = "\\\\"
ignore_default = no
ignore_null = no
}
Is it right? Is it neccessary to care lowercase or upercase in ComputerName?
realm ntdomain {
format = prefix
delimiter = "\\\\"
ignore_default = no
ignore_null = no
}
Is it right? Is it neccessary to care lowercase or upercase in ComputerName?
- And I have a problem with my XP client: after the first successful authentication, when I
disconnect and reconnect, Instead I must enter my username and password, It automatically
connect without a login prompt.
Thanks in advance!
__________________________________________________
Do You Yahoo!?
Tired of spam? Yahoo! Mail has the best spam protection around
http://mail.yahoo.com
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
