FREE eBook Download: Top 8 Secrets to Great Wi-Fi We all love Wi-Fi these days – whether at work, travelling or just at home with Netflix. Wi-Fi has become both ubiquitous and something we truly rely on for our day-to-day work; it’s become business critical for many companies.

Cisco ISE is Cisco’s Identity Services Engine, and it is at the heart of Cisco’s Digital Network Architecture strategy to provide visibility and security in the most demanding Enterprise networks.

Many organisations use 802.1X EAP-PEAP with MS-CHAPv2 as the inner authentication method (or PEAP for short) to join the corporate WLAN.  If you use a username and password to join your WLAN then this is likely what you use too. WPA2 Enterprise is the most commonly used method to encrypt traffic and along with EAP-TLS (certificate based[…]

What you need to know about KRACKs (Key Reinstallation Attacks)

During fault finding with WLAN networks, there comes a point where you just have to take it down to the lowest level. Sometimes it is because you have a bug and you need to see the exact behaviour of devices in the network, in order to work out where the issue lies.

This is part 2 of my blog series on rapid prototyping without any real networking equipment. In part 1 I covered PAP and CHAP authentication and later on in part 3 we will be covering EAP-TLS (X.509 certificate based) authentication. Let's get more creative and look at testing some EAP methods. The most common method found in enterprises is probably[…]

There is a wealth of information on the internet about configuring Radius Servers (Cisco ISE or Aruba Clearpass) to perform a multitude of operations. The intention of this blog series is to help Radius Server administrators test their configurations - mostly for purposes of learning and rapid prototyping configurations.

This is part 3 of my blog series on rapid prototyping in ISE without requiring any networking equipment. This time we're going to perform EAP-TLS (X.509 certificate based) authentication.