<div dir="ltr"><div>Hi,</div><div><br></div><div>Dont get me wrong, I find this a fantastic initiative, however I would like to explain and voice my concern. </div><div><br></div><div>We in the academic/EDUROAM community have had CAT in the web format for quite a while. The problem is the service provides executables in the form of installers for the Windows plataforms, and even run-time additions to your client/SO software. </div>
<div><br></div><div>Nonetheless, this service provided by Dante, and somewhat, that in itself is a seal of guarantee and peace of mind. The interface of this service seems similar, maybe the codebase is the same too. What guarantee I would have on this situation about installing foreign binaries in our workstations? </div>
<div><br></div><div>Even if I am not making myself the question, I know for sure, someone will ask me.</div><div><br></div><div>Regards,</div><div>Rui Ribeiro</div><div><br></div><div><a href="http://www.linkedin.com/pub/rui-ribeiro/16/ab8/434">http://www.linkedin.com/pub/rui-ribeiro/16/ab8/434</a><br>
</div><div><br></div><br><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left-width:1px;border-left-color:rgb(204,204,204);border-left-style:solid;padding-left:1ex">
<br>
Message: 4<br>
Date: Tue, 29 Apr 2014 07:04:21 +0200<br>
From: 1x-config Info <<a href="mailto:info@1x-config.org">info@1x-config.org</a>><br>
To: <a href="mailto:freeradius-users@lists.freeradius.org">freeradius-users@lists.freeradius.org</a><br>
Subject: IEEE 802.1X EAP configuration simple AND secure -<br>
<a href="https://802.1x-config.org" target="_blank">https://802.1x-config.org</a><br>
Message-ID: <<a href="mailto:535F32D5.8050208@1x-config.org">535F32D5.8050208@1x-config.org</a>><br>
Content-Type: text/plain; charset=ISO-8859-15; format=flowed<br>
<br>
Hello list,<br>
<br>
on this list, people somewhat regularly lament that they can't get their<br>
WPA2-Enterprise WiFi RADIUS server setup deployed to clients easily.<br>
<br>
That is understandable. Especially in a BYOD context, getting all of<br>
your users to "do the right thing" usually involves an error-prone<br>
process in lengthy PDF instructions: click through a madness of options<br>
here, import CA there, don't disable cert validation, etc.<br>
<br>
Earlier this month, a new web service was launched which is called<br>
"Enterprise Network Configuration Assistant Tool (CAT)" which allows<br>
RADIUS / network admins to make deployment of IEEE 802.1X simple and easy.<br>
<br>
Visit:<br>
<br>
<a href="https://802.1x-config.org" target="_blank">https://802.1x-config.org</a><br>
<br>
(and especially take the tour at <a href="https://802.1x-config.org/tour1.php" target="_blank">https://802.1x-config.org/tour1.php</a> )<br>
<br>
As a network admin, you upload the characteristics of your network<br>
(issuing CA, expected server name in server cert, supported EAP types,<br>
SSIDs to configure...) and in return get a mostly automatic installer<br>
for that network, which you can hand out to your users. None of the<br>
information you need to upload is a secret.<br>
<br>
And the best is: the base functionality is *free*. Only if you are a<br>
business or enterprise that cares about branding, helpdesk hints, or<br>
digital signatures for the generated installers, then you'll need to<br>
purchase one of the paid upgrades.<br>
<br>
I hope I can do something good to the community of IEEE 802.1X / EAP<br>
users out there by making sure that a secure deployment can be achieved<br>
with ease, and for free. Especially now that some/many people need to<br>
replace their EAP deployment profiles due to a possible Heartbleed<br>
compromise.<br>
<br>
Thanks for tolerating this ad ;-)<br>
<br>
The good folks of <a href="https://802.1x-config.org" target="_blank">https://802.1x-config.org</a><br>
<br>
<br></blockquote></div></div></div>