"WPA keys" that expires after use
I would like to setup a wirelless network in my shop for my customers. And instead of giving them WPA Shared Key, which is valid until I change it manually, I would like to give them a "WPA key, which is valid only for x hours". The idea is, that the router does the authentication via radius server, which stores predefined "WPA keys". When user uses one of them to access the network, the "WPA key" is activated. After specified period of time, radius server automatically deactivates the WPA key and disconnects user. This way, I could forgetet about changing WPA key manually every week, stop worring that my key was spred to much, etc. Is this possible with FreeRadius server? If yes, is there any "how-to" on this subject? Or do you recomend any other aproach? Ferd0 ____________________________________________________________________________________ Take the Internet to Go: Yahoo!Go puts the Internet in your pocket: mail, news, photos & more. http://mobile.yahoo.com/go?refer=1GNXIC
Hi,
The idea is, that the router does the authentication via radius server, which stores predefined "WPA keys". When user uses one of them to access the network, the "WPA key" is activated. After specified period of time, radius server automatically deactivates the WPA key and disconnects user.
err, if the WPA key only becomes active AFTER they've reached the RADIUS server - then HOW are they to connect to the wireless in the first place - as the WPA key is required for the layer 2 link to come alive(!) AAA would be able to give you this 'very low level' type of authentication. what you COULD do with AAA is to use SSL certs....eg EAP-PEAP/EAP-TLS with WPA-enterprise. and then once the cert has been used, expire it. alternatively use WPA as you are currently doing but enforce another control method to get online - such as a SOCKS5 proxy. alan
participants (2)
-
A.L.M.Buxey@lboro.ac.uk -
Ferdo Piš