Solved

Can i Configure Authentication is EAP & Encryption Type is Open in Wing wireless?

  • 11 February 2021
  • 1 reply
  • 35 views

Is it possible means kindly explain.

 

icon

Best answer by Ovais Qayyum 16 February 2021, 21:05

Hi Saravana,

Since you know that EAP is NOT an encryption type, it is basically just a per-user e.g. username and password (in case of PEAP-MSCHAPv2) authentication mechanism.

WPA2 is a security scheme that specifies two main aspects of your wireless security:

  • Authentication: Your choice of PSK ("Personal") or 802.1X ("Enterprise").
  • Encryption: Always AES-CCMP.

If you're using WPA2 security on your network, you have two authentication choices: You either have to use a single password for the whole network that everyone knows (this is called a Pre-Shared Key or PSK), or you use 802.1X to force each user to use his own unique login credentials (e.g. username and password). 

You can’t perform secure username and password exchange when using EAP (e.g. PEAP-MSCHAPV2) over an unsecured and non-encrypted (Open) network. The authentication will fail. 

 

Regards,

Ovais 

View original

This topic has been closed for comments

1 reply

Userlevel 5

Hi Saravana,

Since you know that EAP is NOT an encryption type, it is basically just a per-user e.g. username and password (in case of PEAP-MSCHAPv2) authentication mechanism.

WPA2 is a security scheme that specifies two main aspects of your wireless security:

  • Authentication: Your choice of PSK ("Personal") or 802.1X ("Enterprise").
  • Encryption: Always AES-CCMP.

If you're using WPA2 security on your network, you have two authentication choices: You either have to use a single password for the whole network that everyone knows (this is called a Pre-Shared Key or PSK), or you use 802.1X to force each user to use his own unique login credentials (e.g. username and password). 

You can’t perform secure username and password exchange when using EAP (e.g. PEAP-MSCHAPV2) over an unsecured and non-encrypted (Open) network. The authentication will fail. 

 

Regards,

Ovais