Improve company productivity with a Business Account.Sign Up

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 879
  • Last Modified:

Security around WPA2 Enterprise

Greetings all

We are looking at deploying wireless networks in our offices globally. From what I understand, we'll be using WPA2 Security. From what I understand, users will have a seperate username/password to log onto the wireless networks from their laptops and mobile devices (Blackberry, iPhone, Android etc).

I'm a little confused about the security aspects of this in terms of RADIUS and certificates. Since we are using usernames and passwords, presumabley with the help of a RADIUS server, are certificates also going to be involved? Or are certificates only involved if we're NOT using usernames/ passwords.

Secondly, if we are using certificates (either with RADIUS or not), how do we get the certificates onto laptops and mobile devices?

Finally, it's the mobile device side that I'm most worried about. Has anyone any advise regarding getting Blackberry, iPhones and Androids to work with Enterprise WPA2?

Many thanks in advance, folks.
0
Joe_Budden
Asked:
Joe_Budden
  • 2
  • 2
2 Solutions
 
zgiuffriaCommented:
If im not mistaken you can use a certificate and a user name and password.  It is up to you.  You will just want to put the certificates on the laptops and there will be an option to install them.  With the mobile devices it will probably ask you to allow the cert.  The blackberry and I phones should work fine with WPA2...
0
 
devinnoelCommented:
At DEFCON they decided to deploy WPA2 enterprise to secure their WiFi. Popularly known as the most hostile network in the world, I think it says something that they chose it & it held up.

You need to install a digital certificate on each client for it to authenticate the AP, and then they provide a username/password to authenticate themselves to the server.

0
 
Joe_BuddenAuthor Commented:
Thanks guys - any ideas on how to get the certificates on the mobile devices? Or, as zgiuffria says, will mobile users just recv a prompt about the certificate and whether the user wants to allow the connection anyway?
0
 
devinnoelCommented:
The only one I've looked at much was nasty old Windows Mobile 6.5 a while back. There was an option somewhere to add a certificate. I haven't looked into it for my current (Android phone). I'd suggest goggling around on it a bit.
0
 
zgiuffriaCommented:
I think it depends on the certificate and if it identifies it as a certificate.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Worried about phishing attacks?

90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!

  • 2
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now