freeradius data encryption modes

Brett Littrell Blittrell at musd.org
Fri Jan 28 18:27:37 CET 2011


Hey Gustav,
 
    WPA and AES is the encryption that occurs between the client and
the Access point, not from the client thru the AP to the Radius server. 
The client establishes an encrypted connection to the AP using
WPA/AES(or Tkip), the AP then decrypts that info and uses radius and
it's own encryption methods to query the username, password to get
authorization and access levels.  So WPA/AES ends at the AP.
 
Hope that helps.
 
Brett Littrell
Network Manager
MUSD
CISSP, CCSP, CCVP, MCNE


>>> On Thursday, January 27, 2011 at 11:54 PM, in message
<20110128075412.49490 at gmx.net>, <mcabh at gmx.de> wrote:

Hi @all, I have installed a freeradius server succesfully. I can login
with all my clients using WPA2 (AES-CCMP) PEAP with mschapv2.
Last week I got a new notebook that don´t support the data ecryption
AES-CCMP. The data encryption that I can specify (in WPA2 with
PEAP/mschapv2) only is AES, AES MFP, TKIP and TKIP MFP.
Here´s my question, can I configure my freeradius server to support
logins with AES/AES MFP/TKIP/TKIP MFP?

Thanks for help...

Greetings Gustav
-- 
Empfehlen Sie GMX DSL Ihren Freunden und Bekannten und wir
belohnen Sie mit bis zu 50,- Euro! https://freundschaftswerbung.gmx.de
-
List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20110128/c1c41ba0/attachment.html>


More information about the Freeradius-Users mailing list