-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 At 2:24 PM -0500 12/23/09, David Blahut wrote: >We are beginning to deploy encrypted wireless and I am looking for some >words of wisdom. Mainly what method you used and what reasons as to why >you chose said method or any reason you wish you had not.
We went with EAP-PEAPv0 (MS-CHAPv2) for authentication because that's what was supported by the built-in Windows supplicant. Our tech support organization has always had a strong preference for using built-in solutions as opposed to having to support the installation of 3rd-party software. We chose WPA2 encryption, supporting AES/CCMP only, no TKIP. We made this conscious decision because we wanted to reduce complexity and not support legacy hardware. Overall things have worked out well. -----BEGIN PGP SIGNATURE----- Version: 9.9.1.287 wj8DBQFLMnDyDlQHnMkeAWMRAp0rAKCTmiZX5QRfaL0CtbAbZPKaVaGDAgCg1QGf efmA90WBxk/el54A/FXJ3h0= =l66X -----END PGP SIGNATURE----- -- Julian Y. Koh <mailto:kohs...@northwestern.edu> Manager, Network Transport <phone:847-467-5780> Telecommunications and Network Services Northwestern University PGP Public Key:<http://bt.ittns.northwestern.edu/julian/pgppubkey.html> ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.