This is part 3 of my blog series on rapid prototyping in ISE without requiring any networking equipment. This time we're going to perform EAP-TLS (X.509 certificate based) authentication.

This is part 2 of my blog series on rapid prototyping without any real networking equipment. In part 1 I covered PAP and CHAP authentication and later on in part 3 we will be covering EAP-TLS (X.509 certificate based) authentication.

The intention of this blog series is to help Radius Server administrators test their configurations - mostly for purposes of learning and rapid prototyping configurations. In part 2 we will cover the use of EAP-PEAP authentication and in part 3 we covering testing of authentication.

Time Poor? You only need a minute to Set Up a Cisco Meraki Site-to-Site VPN. VPNs can be confusing and time consuming to setup. There's every chance of making a mistake and leaving your network with a security risk. Meraki AutoVPN is here to help.

Many organisations use 802.1X EAP-PEAP with MS-CHAPv2 as the inner authentication method (or PEAP for short) to join the corporate WLAN. If you use a username and password to join your WLAN then this is likely what you use too. WPA2 Enterprise is the most commonly used method to encrypt traffic and along with EAP-TLS (certificate based authentication),[…]