Re: [WIRELESS-LAN] Authentication/Encryption revisited

[Frank Bulk - iNAME.com]

Don't some SSL VPN's require some kind of ActiveX control to provide encryption for non-web-based applications?  That would neccesitate a Windows computer.   Of course, if the service being provided is web-based and can do SSL, then it's a nice easy way to secure your traffic Layer-3.  But your Layer-2 traffic is still in the clear.   Phillipe Hanset makes a good point about 802.1X's ubiquity.  68% of our ResNET uses Windows XP, 3% use Windows 2000, and 3% use Mac OS 9/X.  Thirteen percent recorded 'don't know', so many of them could be Win2K/XP.  That means at least 3/4's of the student population can use their OS' native 802.1X client.  Wait until next academic year and the numbers will be much better.  For the other older Windows computer there is even WIRE1x: http://wire.cs.nthu.edutw/wire1x/   Add Cisco's ACS to provide the intermediate LDAP authentication, and you have a solution.   Regards,   Frank >>> [EMAIL PROTECTED] Thursday, September 09, 2004 3:39:57 pm >>> Let me throw this out to the group, though it has been touched on before... I have some options in hand, but want to make sure none are being overlooked. Looking for options for authentication/encryption based on following requirements: - NO client software required for encryption - Operating system agnostic (work with any and all OS') - Directly compatible with LDAP - Scale to two thousand or more users, 750 APs eventually Sorta points to SSL VPN, I know. But again, am I overlooking any other solutions that meet these requirements? If any of you use SSL-VPN, whose do you use, and what do you like/dislike about it? This is a great group to follow, by the way :) Lee Lee H. Badman CWSP, CWNA (CWNP011288) Network Engineer Computing and Media Services (NSS) 250 Machinery Hall Syracuse University Syracuse, NY 13244 (315) 443-3003 Voice (315) 443-1621 Fax ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://wwweducause.edu/cg/ . ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/cg/.