Re: EAP types
From: S. Pidgorny
Date: 12/09/04
- Next message: S. Pidgorny
: "Re: Disclosure" - Previous message: S. Pidgorny
: "Re: wireless authentication before logon" - In reply to: MToddH: "EAP types"
- Next in thread: MToddH: "Re: EAP types"
- Reply: MToddH: "Re: EAP types"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 9 Dec 2004 19:49:12 +1100
You can do that.
1. You can disable reauthentication through Wireless GPO (set Computer
Authentication to Computer Only). There is a corresponding registry key.
2. I believe you can create two separate IAS policies for users and
computers. this would be a better approach, as you cannot trust
computer-only authentication - computers can be cloned easily.
-- Svyatoslav Pidgorny, MVP, MCSE -= F1 is the key =- "MToddH" <MToddH@discussions.microsoft.com> wrote in message news:12900A9F-0D08-4513-A042-59BC13DF7785@microsoft.com... > I am working on implementing 802.1x with EAP-TLS. My requirement is that the > authentication requires a client certificate, not just server side. My > understanding is that EAP-TLS requires both user & computer certifcates. > This is nice, but a little overkill for our implementation. Is there a way > to implement EAP that only requires a computer certificate for the clients, > but uses user name and password for user authentication? Can I implement > PEAP to do this?
- Next message: S. Pidgorny
: "Re: Disclosure" - Previous message: S. Pidgorny
: "Re: wireless authentication before logon" - In reply to: MToddH: "EAP types"
- Next in thread: MToddH: "Re: EAP types"
- Reply: MToddH: "Re: EAP types"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
