Click here to get back home

WPA2 with PEAP-TLS - How secure is it?
 HomeNewsGroups | Search | About
Login Password
Register Now!
 microsoft.public.windows.server.security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content
Subject Author Date
WPA2 with PEAP-TLS - How secure is it? g18c 11-05-2006
Get Chitika Premium
Posted by g18c on November 5, 2006, 7:42 am
Please log in for more thread options
 Hi,

Another quick question regarding WPA2 and PEAP-TLS. I have this running
on my cisco aironet access point, i plan to hang this off a firewalled
segment of the internal lan. Is this a good idea? Im led to believe
WPA2 is very strong, indeed Pentagon DoD strong. The lan segment is as
sensitive as most other comercial companies lans, however with a strong
encryption and managment of certificates would other experts here be
happy to run the same?

Thanks in advance,

Chris


Posted by Steve Riley [MSFT] on November 5, 2006, 3:30 pm
Please log in for more thread options
 : quoted-printable

There's really no need to build separate VLANs for wireless networks so =
long as you're using good processes on your wireless. And WPA2 with TLS =
is in fact one of those good processes.

______________________________________________________
Steve Riley
steve.riley@microsoft.com
http://blogs.technet.com/steriley
http://www.protectyourwindowsnetwork.com


Hi,

Another quick question regarding WPA2 and PEAP-TLS. I have this =
running
on my cisco aironet access point, i plan to hang this off a firewalled
segment of the internal lan. Is this a good idea? Im led to believe
WPA2 is very strong, indeed Pentagon DoD strong. The lan segment is as
sensitive as most other comercial companies lans, however with a =
strong
encryption and managment of certificates would other experts here be
happy to run the same?

Thanks in advance,

Chris

------=_NextPart_000_006B_01C700D6.21F47A20
Content-Type: text/html;
        charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dwindows-1252">
<STYLE></STYLE>

<META content=3D"MSHTML 6.00.5750.0" name=3DGENERATOR></HEAD>
<BODY id=3DMailContainerBody=20
style=3D"PADDING-RIGHT: 10px; PADDING-LEFT: 10px; FONT-SIZE: 12pt; =
COLOR: #000000; PADDING-TOP: 15px; FONT-FAMILY: Cambria"=20
bgColor=3D#ffffff leftMargin=3D0 topMargin=3D0 CanvasTabStop=3D"true" =
acc_role=3D"text"=20
name=3D"Compose message area">
<DIV>There's really no need to build separate VLANs for wireless =
networks so=20
long as you're using good processes on your wireless. And WPA2 with TLS =
is in=20
fact one of those good processes.</DIV>
<DIV><BR>______________________________________________________<BR>Steve =

Riley<BR><A title=3Dmailto:steve.riley@microsoft.com=20
R><A=20
title=3Dhttp://blogs.technet.com/steriley=20
href=3D"http://blogs.technet.com/steriley">http://blogs.technet.com/steri=
ley</A><BR><A=20
title=3Dhttp://www.protectyourwindowsnetwork.com/=20
href=3D"http://www.protectyourwindowsnetwork.com">http://www.protectyourw=
indowsnetwork.com</A></DIV>
<DIV>&nbsp;</DIV>
<DIV>&nbsp;</DIV>
<BLOCKQUOTE=20
style=3D"PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; =
BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV>&lt;<A title=3Dmailto:g18c@hotmail.com=20
message <A=20
=
1162730519.963446.306300@i42g2000cwa.googlegroups.com</A>...</DIV>Hi,<BR>=
<BR>Another=20
quick question regarding WPA2 and PEAP-TLS. I have this running<BR>on =
my cisco=20
aironet access point, i plan to hang this off a firewalled<BR>segment =
of the=20
internal lan. Is this a good idea? Im led to believe<BR>WPA2 is very =
strong,=20
indeed Pentagon DoD strong. The lan segment is as<BR>sensitive as most =
other=20
comercial companies lans, however with a strong<BR>encryption and =
managment of=20
certificates would other experts here be<BR>happy to run the=20
same?<BR><BR>Thanks in =
advance,<BR><BR>Chris<BR></BLOCKQUOTE></BODY></HTML>

------=
Posted by S. Pidgorny on November 13, 2006, 4:18 am
Please log in for more thread options
Yes, the plan is perfectly fine. No need to segment off the wireless network
"just because".

--
Svyatoslav Pidgorny, MS MVP - Security, MCSE
-= F1 is the key =-

> Hi,
>
> Another quick question regarding WPA2 and PEAP-TLS. I have this running
> on my cisco aironet access point, i plan to hang this off a firewalled
> segment of the internal lan. Is this a good idea? Im led to believe
> WPA2 is very strong, indeed Pentagon DoD strong. The lan segment is as
> sensitive as most other comercial companies lans, however with a strong
> encryption and managment of certificates would other experts here be
> happy to run the same?
>
> Thanks in advance,
>
> Chris
>



Similar ThreadsPosted
Secure FTP June 15, 2005, 2:16 pm
is ssl secure enough ? June 15, 2005, 11:33 pm
Best way to secure August 20, 2007, 7:44 pm
Secure VPN access...? June 21, 2005, 5:13 pm
TS Client - How Secure? July 10, 2005, 1:21 am
Secure SFU Server for NIS November 22, 2006, 4:58 am
Secure SSL with LDAP and AD May 20, 2008, 11:23 am
cannot access a secure web site September 27, 2005, 1:15 pm
Secure Remote Desktop August 10, 2006, 11:00 pm
Best practice to secure server????? November 28, 2006, 4:35 am

Our other projects:

Art Dolls, Fairies and Mermaids - Sunnyfaces.net

Roy's Linux, Programming and Search Engines messages

1-Script XML SitemapXML Sitemap