Cisco Cisco Cius Wi-Fi 设计指南
Cisco Cius Wireless Deployment Guide
23
Protected Extensible Authentication Protocol (PEAP)
Protected Extensible Authentication Protocol (PEAP) uses server-side public key certificates to authenticate clients by creating
an encrypted SSL/TLS tunnel between the client and the authentication server.
an encrypted SSL/TLS tunnel between the client and the authentication server.
The ensuing exchange of authentication information is then encrypted and user credentials are safe from eavesdropping.
MS-CHAPv2 and GTC are supported inner authentication protocols as of the 9.2(3) release.
PEAP-GTC was not supported prior to the 9.2(3) release.
PEAP requires that a user account be created on the authentication server.
As of the 9.2(3) release, the authentication server can be validated via importing a certificate into Cisco Cius.
See the
MS-CHAPv2 and GTC are supported inner authentication protocols as of the 9.2(3) release.
PEAP-GTC was not supported prior to the 9.2(3) release.
PEAP requires that a user account be created on the authentication server.
As of the 9.2(3) release, the authentication server can be validated via importing a certificate into Cisco Cius.
See the
Installing Certificates
section for more information.
For more information on Cisco Secure Access Control System (ACS), refer to the following links.
http://www.cisco.com/en/US/prod/collateral/vpndevc/ps5712/ps2086/ps7032/product_data_sheet09186a00800887d5.html
http://www.cisco.com/en/US/prod/collateral/netmgtsw/ps5698/ps6767/ps9911/data_sheet_c78-614584.html