https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322751#M185610 <HTML><HEAD></HEAD><BODY><P>Can we able to use PEAP+CA certificate in voice WLAN authentication.</P><P></P><P>how can i configure dedicated voice traffic in voice wlan. </P><P></P><P>here we have a problem as few user using the voice cridential and login to the network through the laptop</P></BODY></HTML> Fri, 26 Jun 2009 05:01:22 GMT geetsingh22 2009-06-26T05:01:22Z https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322748#M185607 <P>Can anyone help for securing voice WLAN?</P><P></P><P>I want dedicated voice traffic flow in specific vlan no data traffic . Data traffic must drop if it is going through voice vlan.</P><P>Can we use CA Certificate + PEAP +WPA +WPA 2 Authentication in 7925 Cisco IP Phone ?</P><P></P><P>Current Scenario: We have used 2 SSID ,for Voice and data.</P><P> </P><P>Voice SSID authentication </P><P>WPA + AES + EAP-FAST +MAC Authentication</P><P></P><P>Data SSID authentication </P><P>WPA + WPA2 +AES + PEAP</P><P></P><P></P><P></P><P></P> Sun, 04 Jul 2021 00:44:54 GMT https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322748#M185607 geetsingh22 2021-07-04T00:44:54Z https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322749#M185608 <HTML><HEAD></HEAD><BODY><P>I would suggest using WPA1+TKIP+CCKM for the voice WLAN. The 792x phones do not support PMK with AES so you will be doing a full reauth at every roam. With CCKM you will get the fast roaming.</P></BODY></HTML> Tue, 23 Jun 2009 15:16:02 GMT https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322749#M185608 dancampb 2009-06-23T15:16:02Z https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322750#M185609 <HTML><HEAD></HEAD><BODY><P>Hope this helps.</P><P></P><P>Cisco Unified Wireless IP Phone 7921G Deployment Guide</P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/docs/voice_ip_comm/cuipph/7921g/6_0/english/deployment/guide/7921dply.pdf" target="_blank">www.cisco.com/en/US/docs/voice_ip_comm/cuipph/7921g/6_0/english/deployment/guide/7921dply.pdf</A></P><P></P><P>Cisco Unified Wireless IP Phone 7925G Deployment Guide</P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/docs/voice_ip_comm/cuipph/7925g/7_0/english/deployment/guide/7925dply.pdf" target="_blank">www.cisco.com/en/US/docs/voice_ip_comm/cuipph/7925g/7_0/english/deployment/guide/7925dply.pdf</A></P></BODY></HTML> Wed, 24 Jun 2009 22:03:30 GMT https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322750#M185609 Leo Laohoo 2009-06-24T22:03:30Z https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322751#M185610 <HTML><HEAD></HEAD><BODY><P>Can we able to use PEAP+CA certificate in voice WLAN authentication.</P><P></P><P>how can i configure dedicated voice traffic in voice wlan. </P><P></P><P>here we have a problem as few user using the voice cridential and login to the network through the laptop</P></BODY></HTML> Fri, 26 Jun 2009 05:01:22 GMT https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322751#M185610 geetsingh22 2009-06-26T05:01:22Z https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322752#M185611 <HTML><HEAD></HEAD><BODY><P>Sure, you can use PEAP. </P><P></P><P>As far as only allowing phones on the voice WLAN you could use Radius attributes to keep laptops from being able to use that WLAN. Looks at either dynamic VLAN assignments, dynamic ACL, or using the DNAR to specify SSID.</P></BODY></HTML> Fri, 26 Jun 2009 11:45:05 GMT https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322752#M185611 dancampb 2009-06-26T11:45:05Z https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322753#M185612 <HTML><HEAD></HEAD><BODY><P>Yes, in our deployment guides, it explains how to import a certificate in order to server validation when using PEAP.</P><P></P><P>As far as WPA vs WPA2, as mentioned, currently the 792xG does not support a fast roaming method with WPA2(AES), but supports CCKM with WPA(TKIP). Looking at adding the CCX v5 feaure of WPA2+CCKM in a future release, but not committed at this time.</P></BODY></HTML> Mon, 29 Jun 2009 06:34:29 GMT https://community.cisco.com/t5/wireless/securing-voice-wlan/m-p/1322753#M185612 migilles 2009-06-29T06:34:29Z