lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <457090EC.2020804@csuohio.edu>
Date: Fri, 01 Dec 2006 15:30:36 -0500
From: Michael Holstein <michael.holstein@...ohio.edu>
To: Ozan Ozkara <ozan@...ptos.net>
Cc: Wifisec <wifisec@...urityfocus.com>,
	Full-Disclosure <full-disclosure@...ts.grok.org.uk>
Subject: Re: 802.1X tool?

Okay .. wait, maybe I didn't understand your question.

Windows XP (post sp1) can natively do 802.1x on both wired and wireless 
connections. Windows 2000 can do it if you get this : 
http://support.microsoft.com/kb/313664

You can push the 802.1x details out via GPO. 
http://technet2.microsoft.com/WindowsServer/en/Library/5506eeef-9e91-4cab-8e1e-3efb504d1b471033.mspx

The wired instructions are similar.

If you're not in a domain model (ie: you're talking about a college 
resnet, etc) you're out of luck on the GPOs, but you can do it other 
ways (package your own script, .reg file, etc .. but telling people to 
click "ok" on a .reg file is a *bad* thing to do...

It gets a bit trickier if you're using client-side certs, more so if 
you're not using a Microsoft CA to issue them, but certainly not 
impossible (eg: you've got to import the root and client certs manually, 
not to mention getting OpenSSL/whatever to cough up ones that MS 
understands) ...

Cheers,

Michael Holstein CISSP GCIA
Cleveland State University

Ozan Ozkara wrote:
> Hi folks,
> 
> I am trying to find a tool which provides automatic client configuration
> for 802.1X implementation in windows environment. I'm trying to
> implement 802.1x authentication for
> both wired and wireless connection. Is there any way to do remote client
> configuration tool for win32 environment. Will i be able to do that?
> 
> I'd appreciate any real world experience on the subject.
> 
> thanks
> 
> 
> 
> 
> ------------------------------------------------------------------------
> 
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ