On 01/11/2011 17:56, Jeffrey Sessler wrote:
How was your multicast configured? Past the controller-multicast, the
important piece is the AP Multicast mode set on the general page. If it's
set to Unicast, pain and suffering can occur. Also, have you enabled any
of the Media Stream features?
Are
On 19/10/2011 20:20, John York wrote:
Hi
We’re in the process of bringing up a new NPS server, and a contractor
tells me that the cert Common Name and the server’s DNS fqdn don’t have to
match like they do on an SSL server.
“For wireless, any valid certificate will do. It does not have to
this is the Connect to these servers: field.
Without this your supplicant would trust any cert signed by your CA (which
is why it's recommended that you do not use a public CA for EAP).
Regards,
James
--
James J J Hooper
Senior Network Specialist, University of Bristol
http://www.wireless.bristol.ac.uk
Wireless (inc. eduroam). A single instance can handle
these simultaneously.
I believe the majority of the eduroam community use FreeRADIUS too.
** If you meant with Cisco ACS as your RADIUS server:
...sorry, no idea
Regards,
James
--
James J J Hooper
Senior Network Specialist, University
of samba) for authentication, and LDAP for authorization.
-James
--
James J J Hooper
Senior Network Specialist, University of Bristol
http://www.wireless.bristol.ac.uk
--
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found
this.
-James
--
James J J Hooper
Senior Network Specialist, University of Bristol
http://www.wireless.bristol.ac.uk
--
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/groups/.
On 15/08/2011 19:57, Taillon II, Kendall wrote:
We are in the middle of adding new 2960s Cisco switches to are edge. When
connecting our old 1200 series AP’s to the switch via POE, the switch
interface just keeps flashing. Is this because the old AP’s use the old
pre-standard POE? Our new 1142
to be iPods: 556 11.18% 5.54%
Total number claiming to be iPhones:158531.87% 15.78%
Total number claiming to be iPads: 167 3.36% 1.66%
Total remaining, presumed Mac laptops: 266653.60% 26.55%
+--
Regards,
James
--
James J J Hooper
see both our root and the radius server cert (we
have no intermediates).
wpa_supplicant: http://hostap.epitest.fi/wpa_supplicant/
eapol_test quick guide: http://deployingradius.com/scripts/eapol_test/
Regards,
James
--
James J J Hooper
Network Specialist
Information Services
University
'eduroam.wireless.bris.ac.uk'
As far as multiple radius servers go -- they should all use the same
certificate (the name of the radius box is irrelevant to the PEAP
certificate CN).
Regards,
James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http
/compatibility.html
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bristol.ac.uk
--
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http://www.educause.edu/groups/.
-
Solely WPA2/AES Eduroam now.
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bristol.ac.uk http://www.jamesjj.net
--
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can
below, we have Cisco WiSMs, with WMM
enabled - my HTC Desire works ok, my testing hasn't been much more than
with that so far - the majority of our users return from summer vacation
next week...
-James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http
to improve things, but it's still not
brilliant...
Regards,
James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bristol.ac.uk
--
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list
within their own country, and 379 devices roaming outside their home country.}
-James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bristol.ac.uk/eduroam
--
**
Participation and subscription information for this EDUCAUSE
,
James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bristol.ac.uk http://www.jamesjj.net
--
**
Participation and subscription information for this EDUCAUSE Constituent Group
discussion list can be found at http
FreeRADIUS + Samba. MS IAS and many others should work as well. No
need for cached credentials. Never seen before users can logon with their
domain credentials - no problem.
Let me know if you have any follow-up questions.
-James
--
James J J Hooper
Network Specialist
Information Services
and just work (with the same SSID name), but Vista and
Win 7 can't. ...I can see the advantages of being able to enforce WPA2/AES
client side though.
Regards,
James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bristol.ac.uk http
the two profiles, the
clients will only have a profile for the SSID as it is now. The client will
not connect if you change the wireless encryption, without manual
interaction from the user.
-James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http
! Although only for Win7:
http://blogs.msdn.com/eapteam/archive/2009/01/16/peap-identity-privacy-support-in-windows7.aspx
We are using this with our Win7 eduroam clients.
Regards,
James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http
-on-shutdown code 2 = unsigned integer 32;
... to try to pursuade windows machines to explicitly release their leases
if they are shutdown while still in wireless range - there must be an
equivalent to set this DHCP option if you're not using ISC dhcp.
-James
--
James J J Hooper
Network Specialist
a supplicant program (e.g.
http://www.juniper.net/us/en/products-services/software/ipc/odyssey-access-client/oac/
)
-James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bris.ac.uk http://www.JamesJJ.net
as they see fit.
Hi Lee,
Not specifically on a 8900, but we did get PEAP/MS-CHAPv2 on a 8120:
http://www.wireless.bris.ac.uk/getconnected/services/uobroam/manual-blackberry/
(OS: 4.3.0.67)
-James
--
James J J Hooper
University of Bristol
http://www.wireless.bris.ac.uk
--
**
Participation
James J J Hooper wrote:
Lee H Badman wrote:
Wondering if anyone has gone down this road… according to
http://na.blackberry.com/eng/deliverables/4133/BB_Ent_Soln_Security_4.1.6_STO.pdf
the Blackberry 8900 should be able to do 802.1x with PEAP and MS-CHAPv2-
which does not require
services setup just like that: wism vlan-FWSM,
with fwsm in transparent mode. No extra magic required. We use the fwsm to
PAT wireless users on private IPs to the inside and outside worlds.
-James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
is?
We are running 4.1.185.0 on the WISMs and FreeRADIUS 1.1.7 for AAA.
Many Thanks,
James
--
James J J Hooper
Network Specialist
Information Services
University of Bristol
http://www.wireless.bris.ac.uk
--
**
Participation and subscription information for this EDUCAUSE Constituent Group
in Airespace /
Interface-Name attribute, not Tunnel-Group-ID. Do you have a
dynamic
interface called np8ss0 in your WLC?
Dennis Xu
Network Analyst(CCS)
University of Guelph
5198244120 x 56217
-Original Message-
From: James J J Hooper [mailto:[EMAIL PROTECTED]
Sent: October-22-07 12:43 PM
27 matches
Mail list logo
