Wireless Access

Reply
ZL
Contributor II

EAP-TLS vs. PEAP

Hi,

  I was in a conversation with my boss and we started arguing about what we should do for our new campus, EAP-TLS or EAP-PEAP. to be honest, I don't know which one is better and why from Aruba point of view? Any help would be highly appreciated. 

Guru Elite

Re: EAP-TLS vs. PEAP

Please see the old (but still relevant) doc here:  https://community.arubanetworks.com/aruba/attachments/aruba/ForoenEspanol/295/1/WP_BUILDING%20GLOBAL%20SECURITY%20POLICIES%5B1%5D.pdf

******************
Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.
******************
Guru Elite

Re: EAP-TLS vs. PEAP

PEAP uses legacy authentication protocols. EAP-TLS is always recommended.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
ZL
Contributor II

Re: EAP-TLS vs. PEAP

Thanks for the reply, that was really helpful 

Trusted Contributor I

Re: EAP-TLS vs. PEAP

be sure to mark it as accepted if that was the correct answer for you.

Occasional Contributor II

Re: EAP-TLS vs. PEAP

Also if I'm not mistaken it's worth adding that EAP-PEAP also consists of an inner authentication method. When people refer to just PEAP they usually mean EAP-PEAP as the outer protocol and EAP-MSCHAPv2 as the inner. You could also do EAP-PEAP and tunnel EAP-TLS inside.

Guru Elite

Re: EAP-TLS vs. PEAP

PEAP/EAP-TLS is only supported on Windows clients.

Tim Cappalli | Aruba Security
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: