Configuration Example, Wireless

Aruba WPA2 with MAC authentication

René Jorissen on December 19, 2012 1 Comment • Tags: #aaa #aruba #authenticate #initial #mac #networks #profile #role #wpa

Configuring an SSID with WPA2 Pre-Shared key or Enterprise authentication and encryption is very common. Sometimes you would like to add an extra authentication method. Although this method isn’t very secure, MAC authentication is still used as an extra method to strengthen the level of security of a wireless or wired network. These days I … Read More

Proxy

TrendMicro IWSVA – Built-in groups and policies

René Jorissen on November 3, 2010 1 Comment • Tags: #authenticate #built-in #group #iwsva #ldap #user

While configuring a TrendMicro IMSVA appliance I tried to configure different URL filtering policies using built-in Windows Active Directory groups, like “Domain Users” in conjunction with user/group name authentication. Configuring policies with built-in groups weren’t functioning properly. The policies just weren’t matched, while I knew for sure that the user is a member of the … Read More

Configuration Example, Security

MAB and MDA in an IP Phone environment

René Jorissen on February 5, 2010 26 Comments • Tags: #5330 #authenticate #bypass #cdp #cisco-av-pair #device-traffic-classvoice #domain #host-mode #lldp #mab #mac #mda #mitel #multi-domain #multiple #phone #radius #vsa

I blogged before about the MAC Authentication Bypass (MAB) feature in network environments. MAC Authentication Bypass can be used to secure the wired network by verifying MAC addresses to a central database. By using a radius server, like Microsoft IAS or FreeRadius, you can also redirect verified MAC addresses to a specific VLAN. Lately I … Read More

Configuration Example, IPSec / SSL VPN

Juniper SA & GroupWise WebAcc SSO

René Jorissen on May 6, 2009 1 Comment • Tags: #2500 #authenticate #based #fba #form #forms #groupwise #juniper #novell #on #post #sa #sign #single #sso #webacc #webaccess

While configuring a Juniper SA2500 in conjunction with Novell GroupWise WebAccess, the customers wanted single sign on (SSO) configured. The default Novell GroupWise WebAccess login page uses FBA (Forms Based Authentication). So it should be possible to push the correct POST parameters to enable SSO for GroupWise WebAccess. I started with looking at the page … Read More

Proxy

Where is the Internet Authentication Service?

René Jorissen on November 4, 2008 0 Comments • Tags: #2008 #authenticate #authenticate #ias #internet #isa #nap #networkaccessprotection #networkpolicyandaccessservice #networkpolicyserver #nps #owa #pda #radius #server #services #synchronization #technet #vpn #windows

Microsoft IAS server is often used as RADIUS server to authenticate VPN users or in conjunction with ISA reverse proxy to authenticate OWA users or PDA synchronization. Today I had to install an ISA reverse proxy server with ISA 2006 Standard and Exchange 2007. I wanted to install Microsoft IAS as RADIUS server to authenticate … Read More

Security

RSA Authentication Manager 7.1 on VMware

René Jorissen on August 15, 2008 2 Comments • Tags: #61 #71 #authenticate #bad #esx #manager #performance #rsa #slow #vmware

I had to install and configure RSA Authentication Manager 7.1. Looking at the Supported Platforms I couldn’t find VMware ESX as supported platform. VMware ESX was supported for RSA AU6.1. So I thought by myself, let’s give it a try. What I noticed first was the size of the installer. The installation file for RSA … Read More