We are using 802.1x PEAP authentication for our Macintosh clients. It works in 10.3 and 10.4 pretty well. We have succesfully used it in earlier versions but it is trickier. We have also used TLS but the digital certs can be tricky. Self-signed certs can also be tricky.
We have often seen issues with OS X, 10.everything, with PPTP VPN. It often works perfectly fine in one minor rev, then not in the next, and so on. Mike - Michael G. Ruiz, ESSE ACP A+ Network and Systems Engineer Hobart and William Smith Colleges Information Technology Services P.315-781-3711 F.315-781-3409 Team Leader: Derek Lustig ([EMAIL PROTECTED]) Did you know that HWS Students, Faculty, Staff, Alums, etc can purchase computers, accessories, electronics and software at a discount through our partner CDW-G? http://www.cdwg.com/hws/ - ________________________________ From: Jeffrey LeMay [mailto:[EMAIL PROTECTED] Sent: Thu 12/8/2005 1:40 PM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: [WIRELESS-LAN] wireless authentication for Macintosh I am interested in knowing how other academic institutions authenticate their wireless users, particularly for Macintosh clients. At Ithaca College, we currently require wireless users to authenticate via an SSL VPN device (firepass from F5 Networks). This allows us to see who is using the wireless network (via the logs) and provides a level of security for the users as well. This solution works very well for Windows clients but Macintosh clients have experienced a number of problems. We have been working with F5's technical support on the Mac problems for quite some time. Is there an alternative that we could look at? Do other institutions support SSL VPN for Macintosh clients? ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.