 ¡m¤À¨É¡nEnterasys Wifi¤ä´©ªº802.1X»{ÃÒ |       |
Enterasys Thin AP¬[ºc¤ä´©ªº802.1X¥[±K¤è¦¡¦@¦³ WEP ¤Î WPA ¨âºØ¡C
ÁöµMWEPªº¥[±K¤è¦¡¤w¸g¸¨¥î¡A¤£°÷¦w¥þ¡A
§ÚÌÁÙ¬O¨Ó¬Ý¬Ý³o¨âºØ¥[±K¤è¦¡¤U¡A«eºÝWindows¨Ï¥ÎªÌ¸Ó¦p¦ó³]©wµL½uÀô¹Ò¡C
¡ôEnterasysªº802.1X³]©w¦bAuth & Acct¶±¤¤¡C
- WEP
¦bWEP¥[±K¼Ò¦¡¤U¡AWindows¨Ï¥ÎªÌªºµL½u³]©wÀÉ¡A¦w¥þ©ÊÃþ«¬»Ý¿ï¾Ü¬°¡§802.1X¡¨¡C
¦Ó¦bPEAPÃþ«¬¤W¡A¦]¬°¶¶¤l¬[ªºFreeradiusªºEAP¬°PEAP¡A¥u»ÝnServerºÝ¾ÌÃÒ¥[±K¡A«eºÝ¨Ï¥Î¤£¥Î¾ÌÃÒ¡F
©Ò¥H¤£¥Î¤Ä¿ï¡§½T»{¦øªA¾¹¾ÌÃÒ¡¨ªº¬ÛÃö¶µ¥Ø¡C
¤£¹L¡AYEAP³]©w¬°TLSªº¸Ü¡A«eºÝ¨Ï¥ÎªÌ´N¤]¥²»Ý¶×¤J¨Ï¥ÎªÌªº¾ÌÃÒ³á¡I
Freeradius¥Dn´XºØEAPÃþ«¬ªº®t²§¡A½Ð°Ñ¦Ò¶¶¤l¥t¤@½g¤å³¹ - Freeradius»POpenSSL¾ÌÃÒ
µM«á¦b¶i¶¥³]©wùØ¡A¤Ä¿ïÅçÃÒ¼Ò¦¡¬°¡§¨Ï¥ÎªÌÅçÃÒ¡¨§Y¥i¡C
¡ô¦Ü©ó¤U¤èªº³æ¤@ñ¤J(SSO)¡A«h¥i¸Õ¹ê»Ú»Ýn¨Ó¤Ä¿ï¡C
- WPA
¦bWPA¥[±K¼Ò¦¡¤U¡AWindows¨Ï¥ÎªÌªºµL½u³]©wÀÉ¡A¨ä¦w¥þ©ÊÃþ«¬»Ý§ï¬°¡§WPA2-Enterprise¡¨¡C
¦Ó802.1Xªº¬ÛÃö³]©w¡A°£¤F¶i¶¥³]©wùجۦPªº802.1X¥~¡A¨Ã¨S¦³ÃB¥~³]©w¶µ¥Ø¡C
Y¦w¥þ©ÊÃþ«¬ùرj¨î³]©w¬°802.1X¡A«h·|¦]¬°¹ïÀ³ªº¥[±KÃþ«¬¥u¦³WEP¡A¦Ó³y¦¨ºô¸ô³]©w¤£¤@P¡AµLªk³s½u³á¡I
¥t¥~¡A¦bPEAP¤¤ªºEAP-MSCHAP v2ùØ¡A§ÚÌ¥i¥H³]©w¬O§_®M¥Î¨Ï¥ÎªÌµn¤JWindows®Éªº±b¸¹/±K½X°µ¬°802.1Xªºµn¤J¸ê°T¡C
³o³¡¦b³æ¤@ñ¤J(SSO)®É¡A«D±`¦n¥Î¡I
Y¨ú®ø¦¹¶µ¥Øªº¤Ä¿ï¡A¨º¨Ï¥ÎªÌ¦b³z¹L802.1Xµn¤J®É¡A´N¥u¯à¦Û¦æ¿é¤J±b¸¹/±K½X¨Ó¶i¦æÅçÃÒ¤F¡C
♥¶¶¤l¦Ñ±Cªººô©ç¡A½Ð¦hÃö·Ó¡ã
If you don't like something, change it.
If you can't change it, change your attitude.
Don't complain!
|
2015-06-09, 16:01
