Appendix C - Setting Up Secure Wireless Access in a Test Lab

Appendix C

Setting Up Secure Wireless Access in a Test Lab

This appendix describes how to configure secure wireless access using IEEE 802.1X with Protected Extensible Authentication Protocol-Microsoft Challenge Handshake Authentication Protocol version 2 (PEAP-MS-CHAP v2) and Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) authentication in a test lab using a wireless access point (AP) and four computers. Of the four computers, one is a wireless client; one is a domain controller, certification authority (CA), and Dynamic Host Configuration Protocol (DHCP) and Domain Name System (DNS) server; one is a Web and file server; and one is an Internet Authentication Service (IAS) server that is acting as a Remote Authentication Dial-in User Service (RADIUS) server.

NOTE
The following instructions are for configuring a test lab using a minimum number of computers. Individual computers are needed to separate the services provided on the network and to clearly show the desired functionality. This configuration is neither designed to reflect best practices nor is it designed to reflect a desired or recommended configuration for a production network.