Hi Bob-
We've been doing dot1x now for a few years, and in my opinion people
tend to struggle with:
- What EAP type to use
- What RADIUS server to use
- How to get supplicants configured, and whether or not to
support a variety of supplicants
- What about AD
Last time I checked, Windows mobile didnt come with a dot1x supplicant
(that worked). Do you require users to purchase their own supplicant
or do you have a site license?
Lelio Fulgenzi, Senior Analyst
Computing Communications
University of Guelph
519-824-4120 x56354
...sent from my iPod -
Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Lelio Fulgenzi
Sent: Thursday, February 19, 2009 8:15 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
Last time I checked, Windows mobile didnt come with a dot1x supplicant (that
worked). Do
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
We've been running a combination of WPA/TKIP and WPA2/AES with 802.1x
(PEAP/MS-CHAPv2) for approximately 1.5 years now, WEP with 802.1x for
several years prior to that. For about the past 2 years, we've been
running on a single WISM with all
-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
We have a separate PDA network with MAC filtering and restricted ACLs to make
up for MAC filtering being weak.
Daniel Bennett
IT Security Analyst
Security+
PA College of Technology
One College Ave
Williamsport PA 17701
(P
, 2009 10:38 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
We are using MS IAS for radius with PEAP. We don’t have trouble getting folks
configured and connected. Just after that we get complaints of ‘getting kicked
off’ and was wondering if anyone
Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Bob Richman
Sent: Thursday, February 19, 2009 10:38 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
We are using MS IAS for radius with PEAP. We don’t have
Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Daniel Bennett
Sent: Thursday, February 19, 2009 11:02 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
We use the new Network Policy Server, part of Windows 2008 Server. We found
: Thursday, February 19, 2009 10:38 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
We are using MS IAS for radius with PEAP. We don't have trouble getting folks
configured and connected. Just after that we get complaints of 'getting kicked
off
) 570.329.4989
From: The EDUCAUSE Wireless Issues Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Bob Richman
Sent: Thursday, February 19, 2009 11:06 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
The 2nd point Daniel
Subject
Re: [WIRELESS-LAN] Transitioning to dot1x
Check your WLAN Session timeout - this forces a full re-auth at the
specified interval. The default for dot1x is every 30 minutes. You may
want to make this value larger. The User Idle Timeout will do the same
thing, but most laptops generate
@LISTSERV.EDUCAUSE.EDU
02/19/2009 11:20 AM
Please respond to
The EDUCAUSE Wireless Issues Constituent Group Listserv
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
To
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
cc
Subject
Re: [WIRELESS-LAN] Transitioning to dot1x
Charles,
CCKM is supplicant-dependent (via
AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
True, WZC doesn't support CCKM, however unless I missed something, I don't
recall Bob mentioning a specific supplicant. Clients who use WZC (why anyone
would is beyond me) will still be able to connect
Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Charles Bisel
Sent: Thursday, February 19, 2009 11:35 AM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
True, WZC doesn't support CCKM, however unless I missed something, I
respond to
The EDUCAUSE Wireless Issues Constituent Group Listserv
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
To
WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
cc
Subject
Re: [WIRELESS-LAN] Transitioning to dot1x
One useful application with WZC-based PEAP is machine authentication for
unattended devices
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Johnson, Bruce T wrote:
One useful application with WZC-based PEAP is machine
authentication for unattended devices that need to stay
connected. I'm not sure any non-native supplicant supports this.
I've not used the software, but the Open1X
Constituent Group Listserv
[mailto:wireless-...@listserv.educause.edu] On Behalf Of Oliver Gorwits
Sent: Thursday, February 19, 2009 2:56 PM
To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Johnson, Bruce T wrote
Subject: Re: [WIRELESS-LAN] Transitioning to dot1x
True, WZC doesn't support CCKM, however unless I missed something, I don't
recall Bob mentioning a specific supplicant. Clients who use WZC (why
anyone would is beyond me) will still be able to connect without issue, as
it is considered
18 matches
Mail list logo
