Hi,

Dont get me wrong, I find this a fantastic initiative, however I would like to explain and voice my concern. 

We in the academic/EDUROAM community have had CAT in the web format for quite a while. The problem is the service provides executables in the form of installers for the Windows plataforms, and even run-time additions to your client/SO software. 

Nonetheless, this service provided by Dante, and somewhat, that in itself is a seal of guarantee and peace of mind. The interface of this service seems similar, maybe the codebase is the same too. What guarantee I would have on this situation about installing foreign binaries in our workstations? 

Even if I am not making myself the question, I know for sure, someone will ask me.

Regards,
Rui Ribeiro

http://www.linkedin.com/pub/rui-ribeiro/16/ab8/434



Message: 4
Date: Tue, 29 Apr 2014 07:04:21 +0200
From: 1x-config Info <info@1x-config.org>
To: freeradius-users@lists.freeradius.org
Subject: IEEE 802.1X EAP configuration simple AND secure -
        https://802.1x-config.org
Message-ID: <535F32D5.8050208@1x-config.org>
Content-Type: text/plain; charset=ISO-8859-15; format=flowed

Hello list,

on this list, people somewhat regularly lament that they can't get their
WPA2-Enterprise WiFi RADIUS server setup deployed to clients easily.

That is understandable. Especially in a BYOD context, getting all of
your users to "do the right thing" usually involves an error-prone
process in lengthy PDF instructions: click through a madness of options
here, import CA there, don't disable cert validation, etc.

Earlier this month, a new web service was launched which is called
"Enterprise Network Configuration Assistant Tool (CAT)" which allows
RADIUS / network admins to make deployment of IEEE 802.1X simple and easy.

Visit:

https://802.1x-config.org

(and especially take the tour at https://802.1x-config.org/tour1.php )

As a network admin, you upload the characteristics of your network
(issuing CA, expected server name in server cert, supported EAP types,
SSIDs to configure...) and in return get a mostly automatic installer
for that network, which you can hand out to your users. None of the
information you need to upload is a secret.

And the best is: the base functionality is *free*. Only if you are a
business or enterprise that cares about branding, helpdesk hints, or
digital signatures for the generated installers, then you'll need to
purchase one of the paid upgrades.

I hope I can do something good to the community of IEEE 802.1X / EAP
users out there by making sure that a secure deployment can be achieved
with ease, and for free. Especially now that some/many people need to
replace their EAP deployment profiles due to a possible Heartbleed
compromise.

Thanks for tolerating this ad ;-)

The good folks of https://802.1x-config.org