https://community.cisco.com/t5/wireless/dynamic-key-exchange-with-user-authentication/m-p/166666#M140730 <P>I am trying to build a wireless network with fair security but without the users having to go through multiple authentication procedures such as VPN. Also, cost is an important concern. The features I am trying to get are 128 bit WEP with dynamic key exchange and username/password authentication against an active directory 2000 server environment. </P><P></P><P>I will be running Cisco AP350 access points with Windows XP/2000 clients using Cisco 350 wireless cards. The users will also have the Aladdin E-tokens to secure the laptops from being used by unauthorized people. </P><P></P><P>Will I have to use an ACS/ Radius server?</P><P></P><P>Which 802.1X security protocols will I have to use(if any)? </P><P></P><P>Cost and setup time are very important on this one so I am looking for heavy use of the KISS principle. Basically, if you had to do this quickly on a budget, how would you do it? </P><P></P> Sun, 04 Jul 2021 15:42:46 GMT mpayton 2021-07-04T15:42:46Z https://community.cisco.com/t5/wireless/dynamic-key-exchange-with-user-authentication/m-p/166666#M140730 <P>I am trying to build a wireless network with fair security but without the users having to go through multiple authentication procedures such as VPN. Also, cost is an important concern. The features I am trying to get are 128 bit WEP with dynamic key exchange and username/password authentication against an active directory 2000 server environment. </P><P></P><P>I will be running Cisco AP350 access points with Windows XP/2000 clients using Cisco 350 wireless cards. The users will also have the Aladdin E-tokens to secure the laptops from being used by unauthorized people. </P><P></P><P>Will I have to use an ACS/ Radius server?</P><P></P><P>Which 802.1X security protocols will I have to use(if any)? </P><P></P><P>Cost and setup time are very important on this one so I am looking for heavy use of the KISS principle. Basically, if you had to do this quickly on a budget, how would you do it? </P><P></P> Sun, 04 Jul 2021 15:42:46 GMT https://community.cisco.com/t5/wireless/dynamic-key-exchange-with-user-authentication/m-p/166666#M140730 mpayton 2021-07-04T15:42:46Z https://community.cisco.com/t5/wireless/dynamic-key-exchange-with-user-authentication/m-p/166667#M140731 <HTML><HEAD></HEAD><BODY><P>If you use LEAP then you can make the username and password the same as the NT logon details and from the ACS server use a remote database being the NT logon server</P><P>This should solve your requirements pretty well.</P><P>Here is how to setup LEAP on both the AP's and Client cards</P><P><A class="jive-link-custom" href="http://www.cisco.com/univercd/cc/td/doc/product/wireless/airo_350/accsspts/ap350scg/ap350ch8.htm" target="_blank">http://www.cisco.com/univercd/cc/td/doc/product/wireless/airo_350/accsspts/ap350scg/ap350ch8.htm</A></P><P><A class="jive-link-custom" href="http://www.cisco.com/univercd/cc/td/doc/product/wireless/airo_350/350cards/windows/incfg/win5_ch7.htm" target="_blank">http://www.cisco.com/univercd/cc/td/doc/product/wireless/airo_350/350cards/windows/incfg/win5_ch7.htm</A></P></BODY></HTML> Sun, 18 May 2003 23:00:45 GMT https://community.cisco.com/t5/wireless/dynamic-key-exchange-with-user-authentication/m-p/166667#M140731 derwin 2003-05-18T23:00:45Z