A person might want to choose among guest access (open with web portal), VPN access, or full access restricted via 802.1X, each with it's own SSID.
Frank -----Original Message----- From: Emerson Parker [mailto:[EMAIL PROTECTED] Sent: Wednesday, July 19, 2006 10:38 AM To: [email protected] Subject: Re: [WIRELESS-LAN] WPS I don't know. Why would the client chose one SSID over the other? Maybe the highest encryption method or something.... -Emerson -----Original Message----- From: Frank Bulk [mailto:[EMAIL PROTECTED] Sent: Tuesday, July 11, 2006 6:04 PM To: [email protected] Subject: Re: [WIRELESS-LAN] WPS Emerson: Thanks for the info. But what if a person just wants to take advantage of multiple BSSIDs in just one Beacon, or can that not be separated from this whole provisioning process? Frank -----Original Message----- From: Emerson Parker [mailto:[EMAIL PROTECTED] Sent: Tuesday, July 11, 2006 4:20 PM To: [email protected] Subject: [WIRELESS-LAN] WPS So WPS is not necessarily tied to the encryption method. When installed with the WPA2/WPS IE Update, a Windows XP/SP2 client recognizes the WPS IE in the Beacon or Probe Response frames. Wireless Auto Configuration on the client uses PEAP-TLS to connect to the WISP network as it passes a NULL user name and no certificate to the IAS server. After PEAP-TLS authentication, PEAP-TLV is used to send the URL of the provisioning server to the client. WPS on the client downloads the XML master file and the appropriate sub files. After the guest server permits the client (after payment for instance) and Updates AD with the uname/pw, Wireless Auto Configuration on the client disassociates from the AP, reassociates, and then attempts authentication using PEAP-MSCHAPv2 using valid user/password; IAS server authenticates and authorizes the connection request against the new account in AD. In this example, RADIUS is quite involved. -Emerson -----Original Message----- From: Michael Griego [mailto:[EMAIL PROTECTED] Sent: Tue 7/11/2006 2:02 PM To: [email protected] Subject: Re: [WIRELESS-LAN] SSIDs: broadcast and non-broadcast If I had to make an educated guess, I'd say yes. Since the WPS IE is something that the AP would have to determine and broadcast in management frames, I'd say that the two (IE and RADIUS pieces) are related but not reliant on each other. --Mike On Jul 11, 2006, at 12:33 PM, Frank Bulk wrote: > Mike: > > Ah, now I see what you're talking about! > > They are related, but not the same. Can you have take advantage of > the WPS IE frames (i.e.: one broadcast frame about multiple SSIDs) in > Windows XP without the backend? > > Frank > > -----Original Message----- > From: Michael Griego [mailto:[EMAIL PROTECTED] > Sent: Tuesday, July 11, 2006 9:28 AM > To: [email protected] > Subject: Re: [WIRELESS-LAN] SSIDs: broadcast and non-broadcast > > Very interesting. I'm pretty familiar with the concepts behind WPS, > but I was *not* aware of the WPS IE. Given the article title, I > assume that's only available when using WPA2, which is not widely > deployed yet. This looks to be very useful in the future. > > What I (and I assume a lot of others) think of when I think of WPS is > the Microsoft extension to PEAP that allows for provisioning of > account information and the client connection settings. Currently, as > far as I know, it is only actually implemented in IAS. > > http://www.microsoft.com/technet/community/columns/cableguy/ > cg1203.mspx > > --Mike > > > On Jul 10, 2006, at 8:33 PM, Frank Bulk wrote: > >> Michael: >> >> I plead my ignorance here: what does WPS IE support have to do with >> RADIUS servers? AFAIK, to support it you need APs that can broadcast >> the information by forming the SSID broadcast frame correctly and >> clients with the correct software so they can understand it. >> http://support.microsoft.com/?id=893357 >> >> Frank >> >> -----Original Message----- >> From: King, Michael [mailto:[EMAIL PROTECTED] >> Sent: Monday, July 10, 2006 3:37 PM >> To: [email protected] >> Subject: Re: [WIRELESS-LAN] SSIDs: broadcast and non-broadcast >> >> >> >>> -----Original Message----- >>> From: Frank Bulk [mailto:[EMAIL PROTECTED] Microsoft's development >>> of WPS IE should hopefully reduce the problem. >>> >>> Frank >> >> Frank, >> >> Have you seen any uptake on WPS from any of the third party RADIUS >> Servers? So far I assume it's still an IAS only solution. >> >> ********** >> Participation and subscription information for this EDUCAUSE >> Constituent Group discussion list can be found at >> http://www.educause.edu/ groups/. >> >> ********** >> Participation and subscription information for this EDUCAUSE >> Constituent Group discussion list can be found at http:// >> www.educause.edu/groups/. > > > ********** > Participation and subscription information for this EDUCAUSE > Constituent Group discussion list can be found at > http://www.educause.edu/groups/. > > ********** > Participation and subscription information for this EDUCAUSE > Constituent Group discussion list can be found at http:// > www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/. ********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.
