Chapter 6
Certificates and Public Key Infrastructure
To provide security for the authentication of 802.1X-based wireless connections that use either Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) or Protected EAP-Microsoft Challenge Handshake Authentication Protocol version 2 (PEAP-MS-CHAP v2), certificates are used. For EAP-TLS-based wireless authentication, the wireless client and authenticating server (a RADIUS server) exchange certificates. For PEAP-MS-CHAP v2 authentication, the Remote Authentication Dial-In User Service (RADIUS) server sends the wireless client a certificate. This chapter provides an overview of the elements of certificates and public key infrastructure (PKI) for wireless authentication.
More Info
For more information about certificates and security, see the Microsoft Windows 2000 Security Services Web site at http://www.microsoft.com/windows2000/technologies/security/default.asp and the Windows Server 2003 Security Services Web site at http://www.microsoft.com/windowsserver2003/technologies/security/default.mspx.