MLUG: Mizzou Linux Users GroupHome | FAQ | Server | Presentations | Mailing Lists/Archives | Member Tools | Links | Sponsors | Contact
MLUG: Re: [MLUG] FYI: Tigernet WEP key changes on Monday...
Re: [MLUG] FYI: Tigernet WEP key changes on Monday...
Email address obfuscation in effect -- please click here to turn it off.

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]


On 8/1/05, McNutt, Justin M. <EMAIL:PROTECTED> wrote:

Heh.  Do a Google search for 802.1X or EAP or EAPOL (Extensible Authentication Protocol [Over LANs]).  You'll see mostly wireless stuff, but the exact same principles can be applied to a physical Ethernet port.  Very cool.


I recently configured a mixed wireless / wired network for full authentication using 802.1x PEAP with an Active Directory backed radius server.  Not my first choice, but it worked pretty well.  The wireless would either let you on or not while the wired would place your port in a guest vlan until you authenticated. 

The biggest pain of it was working in a mixed vendor environment.  HP switches and Cisco WAPs.  I'm still not sure if I'd recommend the HP procurve switches or not.  They are the right price, but every vendor has it own quirks.


802.1x auth is very cool.  I'm not sure about GNU/Linux support for it especially on the wired side (I think I remember seeing that WPA Supplicant can do 802.1x on most ethernet interfaces, but I can't be sure).  I know FreeBSD doesn't do it at all (as a client) unless you are using the 6.x branch.

--
Nimrod
_______________________________________________
members mailing list
EMAIL:PROTECTED
http://mlug.missouri.edu/mailman/listinfo/members
Questions? Comments? Feel free to contact MLUG.
DMCA and other copyright information.