|
Home > Archive > Radius Server > January 2006 > Concern about wireless security
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Concern about wireless security
|
|
| Newbie 2005-12-22, 5:57 pm |
| Hi,
I currently have SBS 2003 Premium with ISA2004 running. I'm new to a lot of
these stuff so please forgive me, if I'm asking some dummy questions!
Anyway, what I'd like to do is for my wireless devices, I'd like to enable
some sort of authentication mechanism such as prompting for
username/password before it gets an IP address through the access point? Is
this what the RADIUS/IAS server is for? Unfortunately, I have a few devices
that won't support WPA, only WEP.
I appreciate your responses, thanks.
| |
| Eric Hicks [MVP] 2005-12-22, 5:57 pm |
| Yes that's what Radius/IAS is for. If your AP support radius then you can
setup your AP to authenticate users before they are allowed on the network.
Here is a Microsoft article that should help you out
(http://www.microsoft.com/technet/se...etc/peap_0.mspx)
--
--
Eric Hicks [That_Kid] (MS-MVP Mobile Devices)
The MS-MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no
rights...
"Newbie" <newbie@hotmail.com> wrote in message
news:eQFJn8vBGHA.228@TK2MSFTNGP12.phx.gbl...
> Hi,
>
> I currently have SBS 2003 Premium with ISA2004 running. I'm new to a lot
> of these stuff so please forgive me, if I'm asking some dummy questions!
>
> Anyway, what I'd like to do is for my wireless devices, I'd like to enable
> some sort of authentication mechanism such as prompting for
> username/password before it gets an IP address through the access point?
> Is this what the RADIUS/IAS server is for? Unfortunately, I have a few
> devices that won't support WPA, only WEP.
>
> I appreciate your responses, thanks.
>
| |
| James McIllece [MS] 2005-12-22, 5:57 pm |
| "Newbie" <newbie@hotmail.com> wrote in
news:eQFJn8vBGHA.228@TK2MSFTNGP12.phx.gbl:
> Hi,
>
> I currently have SBS 2003 Premium with ISA2004 running. I'm new to a
> lot of these stuff so please forgive me, if I'm asking some dummy
> questions!
>
> Anyway, what I'd like to do is for my wireless devices, I'd like to
> enable some sort of authentication mechanism such as prompting for
> username/password before it gets an IP address through the access
> point? Is this what the RADIUS/IAS server is for? Unfortunately, I
> have a few devices that won't support WPA, only WEP.
>
> I appreciate your responses, thanks.
>
>
>
WEP-only is OK, but as Eric mentions in his post, the access point must be
compatible with the RADIUS protocol. In addition, the APs must be
compatible with 802.1X authentication.
In this scenario, ISA is irrelevant, other than that you need to make sure
to allow RADIUS traffic through the firewall. Your basic setup would be:
Wireless client --->>> Wireless access point --->>> SBS 2003 Premium server
with Internet Authentication Service (IAS) installed and configured.
Here is a whitepaper that shows how to set it all up once you have your
hardware:
"Step-by-Step Guide for Secure Wireless Deployment for Small Office/Home
Office or Small Organization Networks" at
http://www.microsoft.com/downloads/...=269902e8-fc41-
4eb1-9374-44612e64f0fb&displaylang=en
--
James McIllece, Microsoft
Please do not send email directly to this alias. This is my online account
name for newsgroup participation only.
This posting is provided "AS IS" with no warranties, and confers no rights.
| |
| egable@gmail.com 2006-01-04, 2:56 am |
| I have written a PDF which will briefly summarize the methods currently
available for securing wireless networks. It is fairly short, but does
a good job summarizing the key points of each of the different types of
wireless security:
http://eliot.kayandee.net/papers/wireless_security.pdf
| |
| Newbie 2006-01-13, 10:26 pm |
| Thank you very much.
<egable@gmail.com> wrote in message
news:1136349963.120562.308910@g43g2000cwa.googlegroups.com...
>I have written a PDF which will briefly summarize the methods currently
> available for securing wireless networks. It is fairly short, but does
> a good job summarizing the key points of each of the different types of
> wireless security:
>
> http://eliot.kayandee.net/papers/wireless_security.pdf
>
|
|
|
|
|