Forum

PEAP w/ user certificates

1 posts by 1 authors in: Forums > CWSP - Enterprise Wi-Fi Security
Last Post: May 4, 2006:

By Aaron May 4, 2006

Reply

Are you doing EAP-TLS now and actually verifying a cert on the client machine?

Machine authentication with PEAP, from what I understand, sends a username/password during bootup. It is usually the fully qualified domain name (FQDN) that is sent. The machine or computer account is being validated. The only way machine authentication is possible is for the PC connecting to the wireless network to have been previously joined to the domain. If users bring in laptops or other devices that are not part of the domain, they will not be able to gain access to the network because machine authentication will fail.

Page 1 of 1

1

Success Stories

I literally just came out of the testing centre having taken the CWDP exam. The certification process opened my mind to different techniques and solutions. This knowledge can only broaden your perspective. Great job, CWNP, you have a great thing going on here.
-Darren