IEEE 802.1X EAP configuration simple AND secure - https://802.1x-config.org
Rui Ribeiro
ruyrybeyro at gmail.com
Tue Apr 29 13:06:30 CEST 2014
Hi,
Dont get me wrong, I find this a fantastic initiative, however I would like
to explain and voice my concern.
We in the academic/EDUROAM community have had CAT in the web format for
quite a while. The problem is the service provides executables in the form
of installers for the Windows plataforms, and even run-time additions to
your client/SO software.
Nonetheless, this service provided by Dante, and somewhat, that in itself
is a seal of guarantee and peace of mind. The interface of this service
seems similar, maybe the codebase is the same too. What guarantee I would
have on this situation about installing foreign binaries in our
workstations?
Even if I am not making myself the question, I know for sure, someone will
ask me.
Regards,
Rui Ribeiro
http://www.linkedin.com/pub/rui-ribeiro/16/ab8/434
> Message: 4
> Date: Tue, 29 Apr 2014 07:04:21 +0200
> From: 1x-config Info <info at 1x-config.org>
> To: freeradius-users at lists.freeradius.org
> Subject: IEEE 802.1X EAP configuration simple AND secure -
> https://802.1x-config.org
> Message-ID: <535F32D5.8050208 at 1x-config.org>
> Content-Type: text/plain; charset=ISO-8859-15; format=flowed
>
> Hello list,
>
> on this list, people somewhat regularly lament that they can't get their
> WPA2-Enterprise WiFi RADIUS server setup deployed to clients easily.
>
> That is understandable. Especially in a BYOD context, getting all of
> your users to "do the right thing" usually involves an error-prone
> process in lengthy PDF instructions: click through a madness of options
> here, import CA there, don't disable cert validation, etc.
>
> Earlier this month, a new web service was launched which is called
> "Enterprise Network Configuration Assistant Tool (CAT)" which allows
> RADIUS / network admins to make deployment of IEEE 802.1X simple and easy.
>
> Visit:
>
> https://802.1x-config.org
>
> (and especially take the tour at https://802.1x-config.org/tour1.php )
>
> As a network admin, you upload the characteristics of your network
> (issuing CA, expected server name in server cert, supported EAP types,
> SSIDs to configure...) and in return get a mostly automatic installer
> for that network, which you can hand out to your users. None of the
> information you need to upload is a secret.
>
> And the best is: the base functionality is *free*. Only if you are a
> business or enterprise that cares about branding, helpdesk hints, or
> digital signatures for the generated installers, then you'll need to
> purchase one of the paid upgrades.
>
> I hope I can do something good to the community of IEEE 802.1X / EAP
> users out there by making sure that a secure deployment can be achieved
> with ease, and for free. Especially now that some/many people need to
> replace their EAP deployment profiles due to a possible Heartbleed
> compromise.
>
> Thanks for tolerating this ad ;-)
>
> The good folks of https://802.1x-config.org
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.freeradius.org/pipermail/freeradius-users/attachments/20140429/cafc156a/attachment.html>
More information about the Freeradius-Users
mailing list