On Thu, 5 Dec 2002, Mike McCauley wrote: > Many low-end wireless AP's still only provide MAC address authentication > (either internally or to a Radius AAA server), but there are more and more > APs coming that support 802.1x EAP authentication to a Radius server. And > there is now a wide range of wireless clients for different platforms that > support one or more 802.1x EAP authentication protocols. Probably EAP-TTLS-* > and EAP-PEAP are set to become the most popular. EAP-TLS has been available > longer (on Windows and Linux), but it requires a PKI certificate to be > installed on each wireless client, which is tedious. TTLS and PEAP only > require a single certificate for the Radius server. >
I remember there being a problem with TTLS security because of lack of certificate on the client machine. Kevin "Starfox" Arima -- NYCwireless - http://www.nycwireless.net/ Un/Subscribe: http://lists.nycwireless.net/mailman/listinfo/nycwireless/ Archives: http://lists.nycwireless.net/pipermail/nycwireless/
