Hi: I am planning to use FreeRadius to facilitate WLAN security and was looking for validation of the design which tries to leverage the current remote access security infrastructure - Crypto-CARD. Crypto-SERVER doesn't have EAP support at this time so I was thinking of doing something along the lines of .... EAP-TTLS/PAP PAP Wireless Client -----------------------> Wireless AP ------------------> FreeRadius -------------------------------> CryptoCard SERVER 802.1X Proxy Username/Passcode Username/Passcode Is this a viable option ? Thanks.
Shahid Khan <khan@asia.apple.com> wrote:
I am planning to use FreeRadius to facilitate WLAN security and was looking for validation of the design which tries to leverage the current remote access security infrastructure - Crypto-CARD.
Nice people. Used to work there. :)
Crypto-SERVER doesn't have EAP support at this time so I was thinking of doing something along the lines of ....
FreeRADIUS will terminate the TTLS session, and proxy the inner PAP session to the Cryptocard server. (Which might still be based on what I wrote when I was there.) Alan DeKok.
On Mar 19, 2006, at 12:24 PM, Alan DeKok wrote:
Shahid Khan <khan@asia.apple.com> wrote:
I am planning to use FreeRadius to facilitate WLAN security and was looking for validation of the design which tries to leverage the current remote access security infrastructure - Crypto-CARD.
Nice people. Used to work there. :)
Crypto-SERVER doesn't have EAP support at this time so I was thinking of doing something along the lines of ....
FreeRADIUS will terminate the TTLS session, and proxy the inner PAP session to the Cryptocard server. (Which might still be based on what I wrote when I was there.)
Excellent - in that case it's gotta work ;-) I'll give it a shot and revert. Thanks.
Alan DeKok. - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
participants (2)
-
Alan DeKok -
Shahid Khan