802.1X (PEAP)

The following description is based on Wikipedia, see footnotes below

IEEE 802.1X is an IEEE Standard for port-based Network Access Control (PNAC). It is part of the IEEE 802.1 group of networking protocols. It provides an authentication mechanism to devices wishing to attach to a LAN or WLAN.

PEAP

The Protected Extensible Authentication Protocol, also known as Protected EAP or simply PEAP, is a protocol that encapsulates the Extensible Authentication Protocol (EAP) within an encrypted and authenticated Transport Layer Security (TLS) tunnel. PEAP is requiring only a server-side PKI certificate to create a secure TLS tunnel to protect user authentication, and uses server-side public key certificates to authenticate the server. It then creates an encrypted TLS tunnel between the client and the authentication server. In most configurations, the keys for this encryption are transported using the server's public key. The ensuing exchange of authentication information inside the tunnel to authenticate the client is then encrypted and user credentials are safe from eavesdropping.

Usage

The 802.1X PEAP authentication is used in the building LBH for access to the LAN. User authentication is based on the VPN account, which can be applied for online.

To install PEAP on your PC follow the instructions for the appropriate operating system.

• Linux
• Windows
• Linux
• Mac OSX

[1] Wikipedia articles

• http://en.wikipedia.org/wiki/IEEE_802.1X , and
• http://en.wikipedia.org/wiki/Protected_Extensible_Authentication_Protocol