https://community.cisco.com/t5/wireless/leap-security/m-p/669477#M22625 <HTML><HEAD></HEAD><BODY><P>LEAP is succeptable to dictionary attacks , but PEAP or EAP-TLS which are certificate based authentication types will be good.If ease of implementation is what you want then LEAP can be used</P><P></P></BODY></HTML> Thu, 02 Nov 2006 14:44:19 GMT wong34539 2006-11-02T14:44:19Z https://community.cisco.com/t5/wireless/leap-security/m-p/669476#M22624 <P>Dear Everyone</P><P></P><P>I work for a company with about 300 wireless users and 15 access points installed.</P><P>Currently I use LEAP authentication as security, which authorizes by username and</P><P>password, and thereafter it checks if MAC address is recorded in access list in</P><P>RADIUS , and then it establishes a connection.</P><P></P><P>My question is, is there any other method of AAA in order to increase security ? ,</P><P>on WiAPs, on RADIUS or in any other place.</P><P></P><P>Let's discuss this, and see if I use good AAA for network to be invulnerable as is available</P> Sat, 03 Jul 2021 20:09:16 GMT https://community.cisco.com/t5/wireless/leap-security/m-p/669476#M22624 narius210 2021-07-03T20:09:16Z https://community.cisco.com/t5/wireless/leap-security/m-p/669477#M22625 <HTML><HEAD></HEAD><BODY><P>LEAP is succeptable to dictionary attacks , but PEAP or EAP-TLS which are certificate based authentication types will be good.If ease of implementation is what you want then LEAP can be used</P><P></P></BODY></HTML> Thu, 02 Nov 2006 14:44:19 GMT https://community.cisco.com/t5/wireless/leap-security/m-p/669477#M22625 wong34539 2006-11-02T14:44:19Z https://community.cisco.com/t5/wireless/leap-security/m-p/669478#M22626 <HTML><HEAD></HEAD><BODY><P>More on the PEAP and EAP-TLS. With PEAP, the certificate is only on the AAA server, you can do some validation so long as the client has a trust of the ROOT CA that issued the PEAP certificate. In EAP-TLS, the certificate is on the client as well as the AAA server. There are pros and cons to both, and I would recommend reading up on them.</P><P></P><P>Application Note for PEAP:</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/partner/products/hw/wireless/ps430/products_technical_reference_chapter09186a008025d6ee.html" target="_blank">http://www.cisco.com/en/US/partner/products/hw/wireless/ps430/products_technical_reference_chapter09186a008025d6ee.html</A></P><P></P><P>EAP-TLS Deployment Guide:</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/partner/products/sw/secursw/ps2086/products_white_paper09186a008009256b.shtml" target="_blank">http://www.cisco.com/en/US/partner/products/sw/secursw/ps2086/products_white_paper09186a008009256b.shtml</A></P><P></P><P></P></BODY></HTML> Thu, 02 Nov 2006 15:26:47 GMT https://community.cisco.com/t5/wireless/leap-security/m-p/669478#M22626 Stephen Rodriguez 2006-11-02T15:26:47Z