Collaborate Disseminate
Today I’m getting into the details of WPA-Enterprise. Most of what I saw was difference between protocols that use certificates. Most posts say that EAP-TLS is the most secure authentication protocol and that it addresses the… Continue reading Evil Twin Attacks against WPA-TLS
From my understanding, after the Access-Request, the authentication server (RADIUS) send a reply (incapsulated in the Access-Challenge packet) to the authenticator (AP).
The Access-Challenge packet contains an EAP Request in… Continue reading Access-Challenge EAP Request
I would like to suggest to the client which one EAP method and inner authentication to use.
I’m using hostapd to create the AP.
I’ve tried by removing some methods in the hostapd.eap_user but I simply managed to make those … Continue reading Force/Suggest the client to use one specific EAP method
I’m trying to change the default EAP type in hostapd but I am not able to understand how to do that.
Here’s what I’ve found reading the hostapd.conf file:
> # NAI Realm information
> # One or more realm can be adverti… Continue reading Change default EAP type in hostapd
I’ve seen that hostapd-wpe supports the following EAP types for impersonation:
1. EAP-FAST/MSCHAPv2 (Phase 0)
2. PEAP/MSCHAPv2
3. EAP-TTLS/MSCHAPv2
4. EAP-TTLS/MSCHAP
5. EAP-TTLS/CHAP
6. EAP-TTLS/PAP
I think that is usin… Continue reading How to change EAP configuration in hostapd-wpe
I’ve seen that hostapd-wpe supports the following EAP types for impersonation:
1. EAP-FAST/MSCHAPv2 (Phase 0)
2. PEAP/MSCHAPv2
3. EAP-TTLS/MSCHAPv2
4. EAP-TTLS/MSCHAP
5. EAP-TTLS/CHAP
6. EAP-TTLS/PAP
I think that is usin… Continue reading How to change EAP configuration in hostapd-wpe
I’m in the process of implementing 802.1x WPA2 Enterprise Authentication using FreeRadius and EAP-TLS (Mutual TLS Cert Based Auth).
I am keen to understand how to actual protocols work together and how they keep our WiFi net… Continue reading WPA2 Enterprise EAP-TLS Key Exchange
I’m in the process of implementing 802.1x WPA2 Enterprise Authentication using FreeRadius and EAP-TLS (Mutual TLS Cert Based Auth).
I am keen to understand how to actual protocols work together and how they keep our WiFi net… Continue reading WPA2 Enterprise EAP-TLS Key Exchange
I’m in the process of implementing 802.1x WPA2 Enterprise Authentication using FreeRadius and EAP-TLS (Mutual TLS Cert Based Auth).
I am keen to understand how to actual protocols work together and how they keep our WiFi net… Continue reading WPA2 Enterprise EAP-TLS Key Exchange
I’m working on an install of a Microsoft Network Policy Sever (NPS) / RADIUS server for controlling access to corporate Wi-Fi using 802.1x / WPA2-Enterprise – using client certificates for authentication.
We already have an internal AD-in… Continue reading Restrict Microsoft Network Policy Server (NPS) to only trust client certificates from a given CA?