cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

2319
Views
0
Helpful
3
Replies
Highlighted
Beginner

Two factor authentication on wireless

We've got a wireless network set up already and we're getting a Cisco ISE for this project. We're investigating deploying two factor authentication, with the two factors being: Domain Username/Password and a Certificate. 

 

Is the only way to do two factor authentication like this with EAP-Chaining?

 

Will EAP-Chaining work on Android and Apple IOS devices? 

 

3 REPLIES 3
VIP Advisor

Have you considered using a

Have you considered using a USB secure certificate token store instead?  An example is something like this:

http://www.safenet-inc.com/data-protection/password-protection-applications/?aldn-true

Basically you issue a certificate, and it is stored on the USB token.  You give this to the user along with (usually) a PIN.

The user plugs the token into their machine, and they get asked for the PIN.  This unlocks the certificate store, and it now shows up as a normal certificate store in windows.

Being a normal certificate store you can use the certificate for WiFi authentication, VPN authentication, Email encryption, etc.

You may be able to use other methods aside from a PIN.  I have only seen it used with a PIN.

VIP Advisor

Actually this is a better

Cisco Employee

Refer the link : https:/

CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards