RE: [WIRELESS-LAN] Decent tools, on sale

2016-11-30 Thread Chuck Enfield
e >> lhbad...@syr.edu<mailto:lhbad...@syr.edu> w its.syr.edu >> SYRACUSE UNIVERSITY >> syr.edu >> >> From: The EDUCAUSE Wireless Issues Constituent Group Listserv >> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of C

Re: [WIRELESS-LAN] Decent tools, on sale

2016-11-30 Thread Lee H Badman
lhbad...@syr.edu<mailto:lhbad...@syr.edu> w its.syr.edu >> SYRACUSE UNIVERSITY >> syr.edu >> >> From: The EDUCAUSE Wireless Issues Constituent Group Listserv >> <WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU> on behalf of Chuck

RE: [WIRELESS-LAN] Decent tools, on sale

2016-11-30 Thread Chuck Enfield
. -Original Message- From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On Behalf Of Jake Snyder Sent: Wednesday, November 30, 2016 9:28 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Decent tools, on sale Not necessarily

RE: [WIRELESS-LAN] Decent tools, on sale

2016-11-30 Thread Lee H Badman
vember 30, 2016 9:35 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Decent tools, on sale We’re TTLS. They can’t perform the encryption based on the server cert. From: The EDUCAUSE Wireless Issues Constituent Group Listserv [mailto:WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU] On

RE: [WIRELESS-LAN] Decent tools, on sale

2016-11-30 Thread Lee H Badman
, 2016 9:28 AM To: WIRELESS-LAN@LISTSERV.EDUCAUSE.EDU Subject: Re: [WIRELESS-LAN] Decent tools, on sale Not necessarily an EAP-TLS issue. I've personally seen some medical devices that puke on larger certs as well. Even using PEAP, they still get the cert from the radius server for building the TLS

RE: [WIRELESS-LAN] Decent tools, on sale

2016-11-30 Thread Chuck Enfield
: Re: [WIRELESS-LAN] Decent tools, on sale ​That's actually a pretty interesting question, Chuck. I run the G2 (and G1) against 802.1X as well with RADIUS using the longer certs... but- using PEAP w/MS-CHAPv2. Which in this context, is largely irrelevant because you can simply ignore

Re: [WIRELESS-LAN] Decent tools, on sale

2016-11-30 Thread Jake Snyder
York 13244 >> t 315.443.3003 f 315.443.4325 e >> lhbad...@syr.edu<mailto:lhbad...@syr.edu> w its.syr.edu >> SYRACUSE UNIVERSITY >> syr.edu >> >> From: The EDUCAUSE Wireless Issues Constituent Group Listserv >> <WIRELESS-LAN@LISTSERV.EDUCA

RE: [WIRELESS-LAN] Decent tools, on sale

2016-11-29 Thread Chuck Enfield
A gentle caution about the Aircheck.  I love the product, but our gen 1 devices just took a major utility hit when we changed to a SHA-256 4K cert that the device couldn’t support.  Now we can’t use it for connectivity tests on our 1x SSID.  There’s a 2K key size limit on the gen 1 Airchecks.