"Emyeu" <(E-Mail Removed)> wrote in
news:OQFQ$(E-Mail Removed):
> Wireless clients (with CA) access to wireless LAN via radius servers.
> What is the differences between LEAP & PEAP?
> Should i used LEAP or PEAP for authentication?
>
>
>
The IEEE and IETF specify 802.1X and EAP as the standard for secure
wireless networking, and Protected EAP (PEAP) is standards based.
Also, PEAP provides mutual authentication and uses a server certificate for
server authentication by the client, while users have the convenience of
entering password-based credentials.
The PEAP authenication process occurs in two stages -- in the first stage ,
a secure TLS channel is created between the client computer and the
authenticator/RADIUS server. In stage two, after that secure tunnel has
been created, authentication occurs. This provides strong security during
the authentication process and protects against a variety of possible
attacks.
PEAP does not disable logon scripts and does not disable any part of Group
Policy.
There is a good whitepaper on PEAP at the IAS Technology Center if you're
interested:
"The Advantages of Protected Extensible Authentication Protocol (PEAP): A
Standard Approach to User Authentication for IEEE 802.11 Wireless Network
Access"
http://www.microsoft.com/windowsserv...view/peap.mspx
--
James McIllece, Microsoft
Please do not send email directly to this alias. This is my online account
name for newsgroup participation only.
This posting is provided "AS IS" with no warranties, and confers no rights.
Similar Threads
Linear Mode
