Wireless radius
Páginas: 23 (5728 palabras)
Publicado: 10 de mayo de 2011
[pic]
[pic]
Step-by-Step Guide for Setting Up Secure Wireless Access in a Test Lab
Microsoft Corporation
Published: April, 2005
Author: Microsoft Corporation
Abstract
This guide describes how to configure secure wireless access using IEEE 802.1X authentication using Protected Extensible Authentication Protocol with Microsoft Challenge-Handshake Authentication Protocol version 2(PEAP-MS-CHAP v2) and Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) in a test lab using a wireless access point (AP) and four computers. Of the four computers, one is a wireless client; one is a domain controller that is also a certification authority (CA), Dynamic Host Configuration Protocol (DHCP) server, and Domain Name System (DNS) server; one is a Web and file server;and one is an Internet Authentication Service (IAS) server that is acting as a Remote Authentication Dial-In User Service (RADIUS) server.
[pic]
Information in this document, including URL and other Internet Web site references, is subject to change without notice. Unless otherwise noted, the example companies, organizations, products, domain names, e-mail addresses, logos, people, places, andevents depicted herein are fictitious, and no association with any real company, organization, product, domain name, e-mail address, logo, person, place, or event is intended or should be inferred. Complying with all applicable copyright laws is the responsibility of the user. Without limiting the rights under copyright, no part of this document may be reproduced, stored in or introduced into aretrieval system, or transmitted in any form or by any means (electronic, mechanical, photocopying, recording, or otherwise), or for any purpose, without the express written permission of Microsoft Corporation.
Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in this document. Except as expressly provided inany written license agreement from Microsoft, the furnishing of this document does not give you any license to these patents, trademarks, copyrights, or other intellectual property.
© 2005 Microsoft Corporation. All rights reserved.
Microsoft, Active Directory, MS-DOS, Windows, Windows NT, and Windows Server are either registered trademarks or trademarks of Microsoft Corporation in theUnited States and/or other countries.
All other trademarks are property of their respective owners.
Contents
Step-by-Step Guide for Setting Up Secure Wireless Access in a Test Lab 7
PEAP-MS-CHAP v2 Authentication 7
Before You Begin 8
DC1 9
IAS1 30
IIS1 40
Wireless AP 41
CLIENT1 42
EAP-TLS Authentication 47
DC1 47
IAS1 56
CLIENT1 61
Summary 64
SeeAlso 64
Step-by-Step Guide for Setting Up Secure Wireless Access in a Test Lab
This guide provides detailed information about how you can use four computers and a wireless access point (AP) to create a test lab with which to configure and test secure wireless access with the Microsoft® Windows® XP Professional with Service Pack 2 (SP2) and the 32-bit versions of the Windows Server™ 2003 withService Pack 1 (SP1) operating systems. The instructions in this guide are designed to take you step-by-step through the configuration required for Protected Extensible Authentication Protocol with Microsoft Challenge-Handshake Authentication Protocol version 2 (PEAP-MS-CHAP v2) authentication, then through the steps required for EAP-TLS authentication.
[pic]Note:
The following instructionsare for configuring a test lab using a minimum number of computers. Individual computers are needed to separate the services provided on the network and to clearly show the desired functionality. This configuration is neither designed to reflect best practices nor is it designed to reflect a desired or recommended configuration for a production network. For more information about deploying secure...
[pic]
Step-by-Step Guide for Setting Up Secure Wireless Access in a Test Lab
Microsoft Corporation
Published: April, 2005
Author: Microsoft Corporation
Abstract
This guide describes how to configure secure wireless access using IEEE 802.1X authentication using Protected Extensible Authentication Protocol with Microsoft Challenge-Handshake Authentication Protocol version 2(PEAP-MS-CHAP v2) and Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) in a test lab using a wireless access point (AP) and four computers. Of the four computers, one is a wireless client; one is a domain controller that is also a certification authority (CA), Dynamic Host Configuration Protocol (DHCP) server, and Domain Name System (DNS) server; one is a Web and file server;and one is an Internet Authentication Service (IAS) server that is acting as a Remote Authentication Dial-In User Service (RADIUS) server.
[pic]
Information in this document, including URL and other Internet Web site references, is subject to change without notice. Unless otherwise noted, the example companies, organizations, products, domain names, e-mail addresses, logos, people, places, andevents depicted herein are fictitious, and no association with any real company, organization, product, domain name, e-mail address, logo, person, place, or event is intended or should be inferred. Complying with all applicable copyright laws is the responsibility of the user. Without limiting the rights under copyright, no part of this document may be reproduced, stored in or introduced into aretrieval system, or transmitted in any form or by any means (electronic, mechanical, photocopying, recording, or otherwise), or for any purpose, without the express written permission of Microsoft Corporation.
Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in this document. Except as expressly provided inany written license agreement from Microsoft, the furnishing of this document does not give you any license to these patents, trademarks, copyrights, or other intellectual property.
© 2005 Microsoft Corporation. All rights reserved.
Microsoft, Active Directory, MS-DOS, Windows, Windows NT, and Windows Server are either registered trademarks or trademarks of Microsoft Corporation in theUnited States and/or other countries.
All other trademarks are property of their respective owners.
Contents
Step-by-Step Guide for Setting Up Secure Wireless Access in a Test Lab 7
PEAP-MS-CHAP v2 Authentication 7
Before You Begin 8
DC1 9
IAS1 30
IIS1 40
Wireless AP 41
CLIENT1 42
EAP-TLS Authentication 47
DC1 47
IAS1 56
CLIENT1 61
Summary 64
SeeAlso 64
Step-by-Step Guide for Setting Up Secure Wireless Access in a Test Lab
This guide provides detailed information about how you can use four computers and a wireless access point (AP) to create a test lab with which to configure and test secure wireless access with the Microsoft® Windows® XP Professional with Service Pack 2 (SP2) and the 32-bit versions of the Windows Server™ 2003 withService Pack 1 (SP1) operating systems. The instructions in this guide are designed to take you step-by-step through the configuration required for Protected Extensible Authentication Protocol with Microsoft Challenge-Handshake Authentication Protocol version 2 (PEAP-MS-CHAP v2) authentication, then through the steps required for EAP-TLS authentication.
[pic]Note:
The following instructionsare for configuring a test lab using a minimum number of computers. Individual computers are needed to separate the services provided on the network and to clearly show the desired functionality. This configuration is neither designed to reflect best practices nor is it designed to reflect a desired or recommended configuration for a production network. For more information about deploying secure...
Leer documento completo
Regístrate para leer el documento completo.