https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184834#M25271 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P>it's ok with just a self signed certificat on server. </P><P>thanks,</P><P>Michel</P></BODY></HTML> Tue, 13 Jan 2009 17:30:49 GMT mrobert 2009-01-13T17:30:49Z https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184829#M25266 <P>Hi,</P><P>is it possible to works wireless 802.1x in WPA2/AES and auth PEAP-MSCHAP-V2 without use of certificat ?</P><P>Thanks,</P><P>Michel</P> Sat, 03 Jul 2021 23:58:44 GMT https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184829#M25266 mrobert 2021-07-03T23:58:44Z https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184830#M25267 <HTML><HEAD></HEAD><BODY><P>No. You need a server-side certificate to use PEAP.</P><P></P><P>Good Luck</P><P>Scott</P><P></P></BODY></HTML> Mon, 12 Jan 2009 23:37:10 GMT https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184830#M25267 scottmac 2009-01-12T23:37:10Z https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184831#M25268 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>Yes, just un-check the "Validate Server certificate" under Protected EAP Settings</P></BODY></HTML> Tue, 13 Jan 2009 08:37:12 GMT https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184831#M25268 c.constantin 2009-01-13T08:37:12Z https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184832#M25269 <HTML><HEAD></HEAD><BODY><P>Hi Michel,</P><P></P><P>Sorry, my reply to your post is wrong. Even you don't try to validate your server certificate, you must have one because this is a fundamental part of this method.</P></BODY></HTML> Tue, 13 Jan 2009 09:16:03 GMT https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184832#M25269 c.constantin 2009-01-13T09:16:03Z https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184833#M25270 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>You just need to have a certificate on the RADIUS-server to start PEAP. It's easy to generate a self-sign certificate, using Open-SSL. </P><P>The clients don't need any certifcate and don't need to know the server certifcate.</P><P></P><P>Good luck</P><P>Johan</P></BODY></HTML> Tue, 13 Jan 2009 12:57:24 GMT https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184833#M25270 jhedstr2 2009-01-13T12:57:24Z https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184834#M25271 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P>it's ok with just a self signed certificat on server. </P><P>thanks,</P><P>Michel</P></BODY></HTML> Tue, 13 Jan 2009 17:30:49 GMT https://community.cisco.com/t5/wireless/peap-wpa2-aes-without-certificat/m-p/1184834#M25271 mrobert 2009-01-13T17:30:49Z