CCIE wireless

Page 4 - Seeking answers? Join the AnandTech community: where nearly half-a-million members share solutions and discuss the latest tech.
Toggle sidebar Toggle sidebar
S

ScottMac

Moderator<br>Networking<br>Elite member
Mar 19, 2001
5,471
2
0
Perhaps they pay more because smart people are so hard to find in your neighborhood?

I'm out of this discussion to go talk to a brick wall that has better comprehension.
 
D

DisgruntledVirus

Lifer
Dec 26, 2007
11,782
2
76
Originally posted by: ScottMac
Perhaps they pay more because smart people are so hard to find in your neighborhood?

I'm out of this discussion to go talk to a brick wall that has better comprehension.
Click to expand...

I'm sure the brick wall would be easier to talk to :)
 
alkemyst

alkemyst

No Lifer
Feb 13, 2001
83,769
19
81
Originally posted by: DisgruntledVirus
Originally posted by: ScottMac
Perhaps they pay more because smart people are so hard to find in your neighborhood?

I'm out of this discussion to go talk to a brick wall that has better comprehension.
Click to expand...

I'm sure the brick wall would be easier to talk to :)
Click to expand...

I agree you guys are like a box of rocks.
 
J

JackBurton

Lifer
Jul 18, 2000
15,993
14
81
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
 
X

xSauronx

Lifer
Jul 14, 2000
19,582
4
81
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

:cookie:

 
J

JackBurton

Lifer
Jul 18, 2000
15,993
14
81
Originally posted by: xSauronx
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

:cookie:
Click to expand...

Thanks man. I appreciate it. :)
 
S

spidey07

No Lifer
Aug 4, 2000
65,469
5
76
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

Good job. But I don't see why that would be a problem, but it would depend on what hotfixes/service packs you have on the client.
 
alkemyst

alkemyst

No Lifer
Feb 13, 2001
83,769
19
81
Originally posted by: spidey07
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

Good job. But I don't see why that would be a problem, but it would depend on what hotfixes/service packs you have on the client.
Click to expand...

it wasn't though, that was his point I believe even though both said he shouldn't be able to do that.

It's like the textbook limits of ethernet and other media. The book is usually VERY conservative what real world shows.

In my IBM PS/2 days, I pulled off quite a bit with their hardware that they said couldn't be done.
 
J

JackBurton

Lifer
Jul 18, 2000
15,993
14
81
Originally posted by: spidey07
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

Good job. But I don't see why that would be a problem, but it would depend on what hotfixes/service packs you have on the client.
Click to expand...

Windows XP doesn't support PEAP with GTC authentication natively. MS said Vista would have it, but to my knowledge it does not. You have to use a third party wireless client for that functionality. We didn't want that option for two reasons, cost and lack of control. With the solution I provided, you can use the Windows' built in wireless client, and most importantly, the wireless configurations can be pushed out through a group policy. :)
 
D

drebo

Diamond Member
Feb 24, 2006
7,034
1
81
Originally posted by: JackBurton
Originally posted by: spidey07
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

Good job. But I don't see why that would be a problem, but it would depend on what hotfixes/service packs you have on the client.
Click to expand...

Windows XP doesn't support PEAP with GTC authentication natively. MS said Vista would have it, but to my knowledge it does not. You have to use a third party wireless client for that functionality. We didn't want that option for two reasons, cost and lack of control. With the solution I provided, you can use the Windows' built in wireless client, and most importantly, the wireless configurations can be pushed out through a group policy. :)
Click to expand...

Feel like sharing? :)
 
S

spidey07

No Lifer
Aug 4, 2000
65,469
5
76
Originally posted by: JackBurton
Originally posted by: spidey07
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

Good job. But I don't see why that would be a problem, but it would depend on what hotfixes/service packs you have on the client.
Click to expand...

Windows XP doesn't support PEAP with GTC authentication natively. MS said Vista would have it, but to my knowledge it does not. You have to use a third party wireless client for that functionality. We didn't want that option for two reasons, cost and lack of control. With the solution I provided, you can use the Windows' built in wireless client, and most importantly, the wireless configurations can be pushed out through a group policy. :)
Click to expand...

Heh, now you're talking an OS/driver /client linkage, not a network thing. ;)

 
J

JackBurton

Lifer
Jul 18, 2000
15,993
14
81
Originally posted by: spidey07
Originally posted by: JackBurton
Originally posted by: spidey07
Originally posted by: JackBurton
I was able to implement GTC authentication using the built in Wireless Zero service within Windows XP so users could authenticate to our Cisco APs using their RSA tokens, even when Cisco and Microsoft both said it couldn't be done. Do I get a cookie? :)
Click to expand...

Good job. But I don't see why that would be a problem, but it would depend on what hotfixes/service packs you have on the client.
Click to expand...

Windows XP doesn't support PEAP with GTC authentication natively. MS said Vista would have it, but to my knowledge it does not. You have to use a third party wireless client for that functionality. We didn't want that option for two reasons, cost and lack of control. With the solution I provided, you can use the Windows' built in wireless client, and most importantly, the wireless configurations can be pushed out through a group policy. :)
Click to expand...

Heh, now you're talking an OS/driver /client linkage, not a network thing. ;)
Click to expand...

True. :)
 
J

JackBurton

Lifer
Jul 18, 2000
15,993
14
81
Originally posted by: drebo
Feel like sharing? :)
Click to expand...
You'll need the PEAP Supplicant provided by some of Cisco's wireless clients. Install that on the client and server and you'll be able to push out Windows wireless configurations through a group policy from the server.
 
C

Cooky

Golden Member
Apr 2, 2002
1,408
0
76
What advantage do you gain over the regular PEAP w/ PEAP GTC?
Besides the supplicant, do you need something else to support it?

For example, from Cisco's ACS server, do you need to apply a new patch or upgrade?
We currently run PEAP w/ ACS 4.2.
 
J

JackBurton

Lifer
Jul 18, 2000
15,993
14
81
Originally posted by: Cooky
What advantage do you gain over the regular PEAP w/ PEAP GTC?
Besides the supplicant, do you need something else to support it?

For example, from Cisco's ACS server, do you need to apply a new patch or upgrade?
We currently run PEAP w/ ACS 4.2.
Click to expand...

We needed the ability to authenticate to our APs with RSA tokens. PEAP with GTC lets us do that. It's pretty cool. When the wireless client finds the AP, it will prompt you for your RSA token. You enter your information and you're then granted access to the network.

Sorry, I don't think I answer your question fully. You don't need to do anything different on your ACS server. Try using Cisco's wireless client first, or what we used, Funk Odyssey Client. If you can authenticate using your RSA token with those clients, you can integrate the PEAP supplicant with Windows and get that same functionality with the Windows built in wireless client. Like I said, the great thing about it is, you can then push out those wireless configurations from the server. On top of that, with RSA security, your wireless network is pretty damn secure. About as secure as a wireless network can be.
 
RadiclDreamer

RadiclDreamer

Diamond Member
Aug 8, 2004
8,622
40
91
Originally posted by: JackBurton
Originally posted by: Cooky
What advantage do you gain over the regular PEAP w/ PEAP GTC?
Besides the supplicant, do you need something else to support it?

For example, from Cisco's ACS server, do you need to apply a new patch or upgrade?
We currently run PEAP w/ ACS 4.2.
Click to expand...

We needed the ability to authenticate to our APs with RSA tokens. PEAP with GTC lets us do that. It's pretty cool. When the wireless client finds the AP, it will prompt you for your RSA token. You enter your information and you're then granted access to the network.

Sorry, I don't think I answer your question fully. You don't need to do anything different on your ACS server. Try using Cisco's wireless client first, or what we used, Funk Odyssey Client. If you can authenticate using your RSA token with those clients, you can integrate the PEAP supplicant with Windows and get that same functionality with the Windows built in wireless client. Like I said, the great thing about it is, you can then push out those wireless configurations from the server. On top of that, with RSA security, your wireless network is pretty damn secure. About as secure as a wireless network can be.
Click to expand...

Not to thread hijack or anything, but last I heard Juniper bought the Odyssey software/Funk
 
J

JackBurton

Lifer
Jul 18, 2000
15,993
14
81
Originally posted by: RadiclDreamer
Not to thread hijack or anything, but last I heard Juniper bought the Odyssey software/Funk
Click to expand...

I'm not sure who owns the Funk software now. I haven't used it in a long time.
 
F

freegeeks

Diamond Member
May 7, 2001
5,460
1
81
Originally posted by: JackBurton
Originally posted by: RadiclDreamer
Not to thread hijack or anything, but last I heard Juniper bought the Odyssey software/Funk
Click to expand...

I'm not sure who owns the Funk software now. I haven't used it in a long time.
Click to expand...

Juniper
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom