187 lines
3.3 KiB
HTML
187 lines
3.3 KiB
HTML
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
|
|
<HTML
|
|
><HEAD
|
|
><TITLE
|
|
>Note about driver support and Xsupplicant</TITLE
|
|
><META
|
|
NAME="GENERATOR"
|
|
CONTENT="Modular DocBook HTML Stylesheet Version 1.7"><LINK
|
|
REL="HOME"
|
|
TITLE="802.1X Port-Based Authentication HOWTO"
|
|
HREF="index.html"><LINK
|
|
REL="PREVIOUS"
|
|
TITLE="Testbed"
|
|
HREF="testbed.html"><LINK
|
|
REL="NEXT"
|
|
TITLE="FAQ"
|
|
HREF="faq.html"></HEAD
|
|
><BODY
|
|
CLASS="sect1"
|
|
BGCOLOR="#FFFFFF"
|
|
TEXT="#000000"
|
|
LINK="#0000FF"
|
|
VLINK="#840084"
|
|
ALINK="#0000FF"
|
|
><DIV
|
|
CLASS="NAVHEADER"
|
|
><TABLE
|
|
SUMMARY="Header navigation table"
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TH
|
|
COLSPAN="3"
|
|
ALIGN="center"
|
|
>802.1X Port-Based Authentication HOWTO</TH
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="left"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="testbed.html"
|
|
ACCESSKEY="P"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="80%"
|
|
ALIGN="center"
|
|
VALIGN="bottom"
|
|
></TD
|
|
><TD
|
|
WIDTH="10%"
|
|
ALIGN="right"
|
|
VALIGN="bottom"
|
|
><A
|
|
HREF="faq.html"
|
|
ACCESSKEY="N"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
></TABLE
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"></DIV
|
|
><DIV
|
|
CLASS="sect1"
|
|
><H1
|
|
CLASS="sect1"
|
|
><A
|
|
NAME="dynWEP"
|
|
></A
|
|
>7. Note about driver support and Xsupplicant</H1
|
|
><P
|
|
> As described in <A
|
|
HREF="intro.html#Key"
|
|
>Key Management</A
|
|
>, one of
|
|
the big advantages of using Dynamic WEP/802.11i with 802.1X is the
|
|
support for session keys. A new encryption key is generated for each
|
|
session.
|
|
</P
|
|
><P
|
|
> <SPAN
|
|
CLASS="application"
|
|
>Xsupplicant</SPAN
|
|
> only supports <SPAN
|
|
CLASS="QUOTE"
|
|
>"Dynamic
|
|
WEP"</SPAN
|
|
> as of this writing. Support for WPA and RSN/WPA2
|
|
(802.11i) is being worked on, and is estimated to be supported at
|
|
the end of the year/early next year (2004/2005), according to Chris
|
|
Hessing (one of the <SPAN
|
|
CLASS="application"
|
|
>Xsupplicants</SPAN
|
|
>
|
|
developers).
|
|
</P
|
|
><P
|
|
> Not all wireless drives support dynamic WEP, nor WPA. To use RSN
|
|
(WPA2), new support in hardware may even be required. Many older
|
|
drivers assume only one WEP key will be used on the network at any
|
|
time. The card is reset whenever the key is changed to let the new
|
|
key take effect. This triggers a new authentication, and there is a
|
|
never-ending loop.
|
|
</P
|
|
><P
|
|
> At the time of writing, most of the wireless drivers in the base
|
|
Linux kernel require patching to make dynamic WEP/WPA work. They
|
|
will, in time, be upgraded to support these new features. Many drivers
|
|
developed outside the kernel, however, support for dynamic WEP;
|
|
HostAP, madwifi, Orinoco, and atmel should work without problems.
|
|
</P
|
|
><P
|
|
> Instead of using Xsupplicant, <A
|
|
HREF="http://hostap.epitest.fi/wpa_supplicant/"
|
|
TARGET="_top"
|
|
>wpa_supplicant</A
|
|
>
|
|
may be used. It has support for both WPA and RSN (WPA2), and a wide
|
|
range of EAP authentication methods.
|
|
</P
|
|
></DIV
|
|
><DIV
|
|
CLASS="NAVFOOTER"
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"><TABLE
|
|
SUMMARY="Footer navigation table"
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="testbed.html"
|
|
ACCESSKEY="P"
|
|
>Prev</A
|
|
></TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="index.html"
|
|
ACCESSKEY="H"
|
|
>Home</A
|
|
></TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="faq.html"
|
|
ACCESSKEY="N"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
>Testbed</TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
> </TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
>FAQ</TD
|
|
></TR
|
|
></TABLE
|
|
></DIV
|
|
></BODY
|
|
></HTML
|
|
> |