Finding the Version of the LEAP Module

Chapter 3 Configuring EAP Types

Overview of PEAP-GTC

Table 3-4

LEAP Network Credentials Settings (continued)

 

 

LEAP Network Credentials

 

Settings

 

Description

 

 

Prompt automatically for

Click this radio button to require the user to enter a separate LEAP

username and password

username and password, which are registered with the backend

 

 

server, in addition to a Windows username and password with every

 

 

authentication attempt.

 

 

Default: Off

 

 

Use saved username and

Click this radio button so that the user is not required to enter a LEAP

password

 

username and password with each Windows login. Authentication

 

 

occurs automatically as needed using a saved username and

 

 

password, which are registered with the backend server.

 

 

Default: Off

 

 

When selecting this option, the user must do the following:

 

 

Enter a username in the Username field.

 

 

Enter a password in the Password field.

 

 

Confirm password—Enter the password again to verify that it

 

 

was entered correctly.

 

 

Note The maximum number of characters allowed for the username

 

 

and password is 256.

 

 

 

The following three scenarios for credentials entry are supported by the LEAP module:

Boot time—During this state, no users are logged on. The LEAP module uses machine credentials for network authentication. The LEAP module does not prompt the user for information but instead obtains the machine credentials by using Microsoft’s Local Security Authority (LSA) API.

Pre-Logon—During this state, Microsoft’s Layer 2 credential provider (L2NA) queries the LEAP module through Microsoft’s EAPHost APIs for types of credentials that are needed. The LEAP module indicates the appropriate type: Windows, network, or none. The user enters the appropriate credentials in a Microsoft L2NA prompt.

Post-Logon—Although the user has already logged on, the LEAP module might need to prompt the user for network credentials because a card was inserted or because network authentication failed. The LEAP module invokes the EapInvokeInteractiveUI API, which is a Microsoft EAPHost API. A LEAP credentials prompt appears, and the user must enter a username and password.

Finding the Version of the LEAP Module

The LEAP module version number, copyright information, and open-source software information are in About tab (see Figure 3-9).

Overview of PEAP-GTC

Extensible Authentication Protocol (EAP) provides support for multiple authentication methods. While EAP was originally created for use with PPP, it has since been adopted for use with IEEE 802.1X, which is Network Port Authentication. Since its deployment, a number of weaknesses in EAP have become

Cisco Aironet 802.11a/b/g Wireless LAN Client Adapters (CB21AG and PI21AG) Installation and Configuration Guide for Windows Vista

 

OL-16534-01

3-21

 

 

 

Page 75
Image 75
Cisco Systems CB21AG, PI21AG manual Overview of PEAP-GTC, Finding the Version of the LEAP Module, 3-21, Default Off