Forum

Mutual Authentication question

1 posts by 1 authors in: Forums > CWSP - Enterprise Wi-Fi Security
Last Post: October 21, 2006:

By jackman October 21, 2006

Reply

I've had this question when implementing this several times and took a couple of times to click with me. Doing it with Funk, IAS and ACS have some differences, too. Basically, the mutual auth is optional as is clearly stated in many of the CWNP texts. If you are to enable verification of the server identity, you have to install a cert on your client device. The only variance to this rule that I know of is if you have IAS setup with auto-enrollment using Active Directory. Nice feature, but you have to login to the domain w/ a wired connection first, which can pose problems. (you can install them manually or connect to the network to pull down the cert chain, too, but you get the point.) Otherwise, you install a cert manually on the client for the other methods. The client compares that to the identity response received from the AP.

I hope that helps.

Shawn

Page 1 of 1

1

Success Stories

I literally just came out of the testing centre having taken the CWDP exam. The certification process opened my mind to different techniques and solutions. This knowledge can only broaden your perspective. Great job, CWNP, you have a great thing going on here.
-Darren

Working through the CWNP coursework and certifications helped not only to deepen my technical knowledge and understanding, but also it boosted my confidence. The hard work it took to earn my CWNE has been rewarding in so many ways.
-Ben

I want to commend you and all at CWNP for having a great organization. You really 'raise the bar' on knowing Wi-Fi well. I have learned a ton of information that is helping my job experience and personal career goals, because of my CWAP/CWDP/CWSP studies. Kudos to all at CWNP.
-Glenn