Planning and Design Considerations

When deploying an 802.1X-authenticated wired network solution, you need to consider the following for planning and design issues:

  • Wired authentication methods

  • Wired authentication modes

  • Authentication infrastructure

  • Wired clients

  • PKI

  • 802.1X Enforcement with NAP

Wired Authentication Methods

Windows Server 2008 and Windows Vista support the following EAP authentication methods for wired authentication:

  • EAP-Transport Layer Security (TLS)

  • Protected PEAP-Microsoft Challenge Handshake Authentication Protocol version 2 (PEAP-MS-CHAP v2)

  • PEAP-TLS

EAP-TLS and PEAP-TLS are used in conjunction with a PKI and computer certificates, user certificates, and smart cards. With EAP-TLS, the wired client sends its computer certificate, user ...

Get Windows Server® 2008 Networking and Network Access Protection (NAP) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.