I'm using freeRADIUS-1.02 as an Authentication Server for my Wireless LAN. I've read "802.1X Port-Based Authentication HOWTO" and I'm still wondering some thing: - What are differences between "unicast key" and "multicast/global key". If unicast key is used for encrypting per-client data and if I have 20 client, does that mean Access Point must hold all 20 per-client unicast key? And if multicast/global key is used for encrypting multicast/broadcast traffic, does that mean we have to pre-configure the key in Access Point? - Can someone explain me about "4-way handshake" and how a client derives 128-bits key for Encryption and 64-bits key for MIC. - I want to authenticate my clients with ComputerName\\UserName and i configured my radiusd.conf like below: realm ntdomain { format = prefix delimiter = "\\\\" ignore_default = no ignore_null = no } Is it right? Is it neccessary to care lowercase or upercase in ComputerName? - And I have a problem with my XP client: after the first successful authentication, when I disconnect and reconnect, Instead I must enter my username and password, It automatically connect without a login prompt. Thanks in advance! __________________________________________________ Do You Yahoo!? Tired of spam? Yahoo! Mail has the best spam protection around http://mail.yahoo.com