+++ Use WPA2 over WPA if/wherever possible. Use AES over TKIP if/wherever possible.
-- ME2 On Thu, Apr 14, 2011 at 5:06 AM, Ziots, Edward <[email protected]> wrote: > I would probably look to more to WPA2-AES if your wireless network will > support it, ( 802.11i), which is much better security than the WPA-PSK TKIP. > > > > > Z > > > > Edward E. Ziots > > CISSP, Network +, Security + > > Network Engineer > > Lifespan Organization > > Email:[email protected] > > Cell:401-639-3505 > > > > *From:* Mercer, John [mailto:[email protected]] > *Sent:* Wednesday, April 13, 2011 8:08 PM > *To:* NT System Admin Issues > *Subject:* Way to Deploy New Wireless SSID and WPA-PSK Passphrase to > clients? > > > > Our network team is looking to migrate our wireless network to a new SSID > with WPA-PSK/TKIP. What options are there to automate that change to the > mobile devices (WinXP) in our domain, whether via group policy or some other > method? > > > > Our understanding is that the passphrase cannot be included in the Wireless > Network Policies aspect of a GPO. > > > > Current options we are aware of are below. If there are others or you have > any recommendations please chime in! Really wanting to avoid option 1... > > 1. Sneakernet > > 2. XML file distribution via script/GPO (haven’t tested this yet) > > http://theether.net/kb/100166 > > 3. Switch to IEEE 802.1X > > > > > > Thanks! > > > > > > *John Mercer* | Systems Engineer | NorthBay Healthcare | > 707.646.3210 | [email protected] > > > ------------------------------ > > The information contained in this e-mail or in attachments to this e-mail > message may be privileged and confidential. This e-mail is intended solely > for the addressee. If you are not the intended recipient, any disclosure, > copying, distribution, or any action taken or omitted in reliance of this > message is strictly prohibited and may be unlawful. If you are not the > intended recipient, please notify us immediately by replying to this message > and permanently delete all copies and attachment(s) from your computer > system. > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to [email protected] > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to [email protected] with the body: unsubscribe ntsysadmin
