https://community.cisco.com/t5/wireless/deployment-question/m-p/282241#M193702 <P>i am looking at deploying the following:</P><P></P><P>Access points: Cisco 1200's</P><P>Client adapters: Aironet a/b/g</P><P>AAA server: Cisco ACS</P><P>Authentication: LEAP (then EAP-FAST when out)</P><P>Encryption: WPA TKIP (is MIC included in TKIP?)</P><P>Management: WLSE</P><P></P><P>All access points will be in a single VLAN. No guest access.Same SSID on all access points for roaming.</P><P></P><P>Is there anything else I can do to make this more secure without using layer 3 VPN's.</P> Sun, 04 Jul 2021 16:44:52 GMT rwcrowe 2021-07-04T16:44:52Z https://community.cisco.com/t5/wireless/deployment-question/m-p/282241#M193702 <P>i am looking at deploying the following:</P><P></P><P>Access points: Cisco 1200's</P><P>Client adapters: Aironet a/b/g</P><P>AAA server: Cisco ACS</P><P>Authentication: LEAP (then EAP-FAST when out)</P><P>Encryption: WPA TKIP (is MIC included in TKIP?)</P><P>Management: WLSE</P><P></P><P>All access points will be in a single VLAN. No guest access.Same SSID on all access points for roaming.</P><P></P><P>Is there anything else I can do to make this more secure without using layer 3 VPN's.</P> Sun, 04 Jul 2021 16:44:52 GMT https://community.cisco.com/t5/wireless/deployment-question/m-p/282241#M193702 rwcrowe 2021-07-04T16:44:52Z https://community.cisco.com/t5/wireless/deployment-question/m-p/282242#M193703 <HTML><HEAD></HEAD><BODY><P>MIC stands for Message Integrity Check and it is different from TKIP.</P><P>Here what Cisco says:</P><P></P><P>CKIP (Cisco Key Integrity Protocol, also known) - Cisco's WEP key permutation technique based on an early algorithm presented ni the 802.11i security task group. </P><P>CMIC (Cisco Message Integrity Check) - CMIC is Cisco's message integrity check mechanism designed to detect forgeries attracts</P><P></P><P>Also,use a strong username/password combination for LEAP - weak to dictionary atack.</P><P></P><P>I hope this helps,</P><P></P><P>ME</P></BODY></HTML> Thu, 24 Jun 2004 22:29:46 GMT https://community.cisco.com/t5/wireless/deployment-question/m-p/282242#M193703 melisei 2004-06-24T22:29:46Z https://community.cisco.com/t5/wireless/deployment-question/m-p/282243#M193704 <HTML><HEAD></HEAD><BODY><P>Hi I need some advice of a deployment!! We need to deploy only 6 no. 1200 series AP's with roaming feature in L2. I understand that one AP can be configured as WDS and local RADIUS server to provide basic management and authentiaction for clients. </P><P></P><P>Question is do we also need WLSE for we only want at this time L2 roaming?? RF management etc is not needed of now.</P></BODY></HTML> Thu, 23 Sep 2004 08:38:02 GMT https://community.cisco.com/t5/wireless/deployment-question/m-p/282243#M193704 vsarin78 2004-09-23T08:38:02Z https://community.cisco.com/t5/wireless/deployment-question/m-p/282244#M193705 <HTML><HEAD></HEAD><BODY><P>What I have here at my place of work, is 19 Air 1200. I also have 5 remote sites that I have at least 10 air 1200's running at the other sites as well. I do use WLSE to manage everything. Also on the Air 1200's I use IP Phones, everything here seems to roam and connect just fine. I basically did everything myself. Install, Site survey, updating and reprograming of at least 700 RF Radios. We seem to have it working here. So I dont wee a problem with what you want to do.</P><P></P><P>Keith </P></BODY></HTML> Thu, 23 Sep 2004 14:52:59 GMT https://community.cisco.com/t5/wireless/deployment-question/m-p/282244#M193705 kmuchida 2004-09-23T14:52:59Z