Sebastian Cerazy wrote:
> But what do I need (any other hardware/software) to make 802.1x as
> secure as possible?
Not sure what you're asking. 802.1x, when implemented, is by-definition
"secure" :-)
> Any other radius server that works with eDir, other supplicant?
It depends on the level of integration you want/need. You can use
freeRADIUS on Linux to authenticate against eDirectory.
http://www.novell.com/documentation/...ius/index.html
You can also use a third-party RADIUS server such as Radiator to do the
same, and run on just about any OS that supports Perl. This is a nice
option because you get GOOD support with the product, vs. freeRADIUS
where you will spend much time googling for answers and finding nothing
but unanswered questions posted in hundreds of forums <G>
As for the supplicant side, you can use the windows XP 802.1x right out
of the box. However, if you need Novell *client* integration, then your
best bet is to purchase a third party supplicant such as Funk's Odyssey
or the Aegis supplicant. Both integrate with the Novell client, letting
you authenticate to the wireless (or wired) network *prior* to the
eDirectory authentication.
There is also one "free" supplicant that supposedly works with the
Novell client, but I can't remember what it's called and I don't think
it works very well (at least it didn't when I tried it last year)
--
Jim
NSC SYsop
Re: eDir & 802.1x AP authentication
Threaded Mode
