451 lines
5.7 KiB
HTML
451 lines
5.7 KiB
HTML
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
|
|
<HTML
|
|
><HEAD
|
|
><TITLE
|
|
>802.1X Port-Based Authentication HOWTO</TITLE
|
|
><META
|
|
NAME="GENERATOR"
|
|
CONTENT="Modular DocBook HTML Stylesheet Version 1.7"><LINK
|
|
REL="NEXT"
|
|
TITLE="Introduction"
|
|
HREF="intro.html"></HEAD
|
|
><BODY
|
|
CLASS="article"
|
|
BGCOLOR="#FFFFFF"
|
|
TEXT="#000000"
|
|
LINK="#0000FF"
|
|
VLINK="#840084"
|
|
ALINK="#0000FF"
|
|
><DIV
|
|
CLASS="ARTICLE"
|
|
><DIV
|
|
CLASS="TITLEPAGE"
|
|
><H1
|
|
CLASS="title"
|
|
><A
|
|
NAME="AEN2"
|
|
></A
|
|
>802.1X Port-Based Authentication HOWTO</H1
|
|
><H3
|
|
CLASS="author"
|
|
><A
|
|
NAME="AEN5"
|
|
>Lars Strand</A
|
|
></H3
|
|
><DIV
|
|
CLASS="affiliation"
|
|
><DIV
|
|
CLASS="address"
|
|
><P
|
|
CLASS="address"
|
|
><TT
|
|
CLASS="email"
|
|
><<A
|
|
HREF="mailto:lars strand (at) gnist org"
|
|
>lars strand (at) gnist org</A
|
|
>></TT
|
|
></P
|
|
></DIV
|
|
></DIV
|
|
><P
|
|
CLASS="pubdate"
|
|
>2004-08-18<BR></P
|
|
><DIV
|
|
CLASS="revhistory"
|
|
><TABLE
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
><TR
|
|
><TH
|
|
ALIGN="LEFT"
|
|
VALIGN="TOP"
|
|
COLSPAN="3"
|
|
><B
|
|
>Revision History</B
|
|
></TH
|
|
></TR
|
|
><TR
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>Revision 1.0</TD
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>2004-10-18</TD
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>Revised by: LKS</TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
ALIGN="LEFT"
|
|
COLSPAN="3"
|
|
>Initial Release, reviewed by TLDP.</TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>Revision 0.2b</TD
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>2004-10-13</TD
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>Revised by: LKS</TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
ALIGN="LEFT"
|
|
COLSPAN="3"
|
|
>Various updates. Thanks to Rick Moen <rick
|
|
(at) linuxmafia com> for language review.</TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>Revision 0.0</TD
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>2004-07-23</TD
|
|
><TD
|
|
ALIGN="LEFT"
|
|
>Revised by: LKS</TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
ALIGN="LEFT"
|
|
COLSPAN="3"
|
|
>Initial draft.</TD
|
|
></TR
|
|
></TABLE
|
|
></DIV
|
|
><DIV
|
|
><DIV
|
|
CLASS="abstract"
|
|
><A
|
|
NAME="AEN32"
|
|
></A
|
|
><P
|
|
></P
|
|
><P
|
|
> This document describes the software and procedures to set up
|
|
and use <A
|
|
HREF="http://standards.ieee.org/getieee802/download/802.1X-2001.pdf"
|
|
TARGET="_top"
|
|
>IEEE
|
|
802.1X Port-Based Network Access Control</A
|
|
> using <A
|
|
HREF="http://www.open1x.org"
|
|
TARGET="_top"
|
|
><SPAN
|
|
CLASS="application"
|
|
>Xsupplicant</SPAN
|
|
></A
|
|
>
|
|
as Supplicant with <A
|
|
HREF="http://www.freeradius.org"
|
|
TARGET="_top"
|
|
><SPAN
|
|
CLASS="application"
|
|
>FreeRADIUS</SPAN
|
|
></A
|
|
>
|
|
as a back-end Authentication Server.
|
|
</P
|
|
><P
|
|
></P
|
|
></DIV
|
|
></DIV
|
|
><HR></DIV
|
|
><DIV
|
|
CLASS="TOC"
|
|
><DL
|
|
><DT
|
|
><B
|
|
>Table of Contents</B
|
|
></DT
|
|
><DT
|
|
>1. <A
|
|
HREF="intro.html"
|
|
>Introduction</A
|
|
></DT
|
|
><DD
|
|
><DL
|
|
><DT
|
|
>1.1. <A
|
|
HREF="intro.html#what8021x"
|
|
>What is 802.1X?</A
|
|
></DT
|
|
><DT
|
|
>1.2. <A
|
|
HREF="intro.html#what80211i"
|
|
>What is 802.11i?</A
|
|
></DT
|
|
><DT
|
|
>1.3. <A
|
|
HREF="intro.html#EAP"
|
|
>What is EAP?</A
|
|
></DT
|
|
><DT
|
|
>1.4. <A
|
|
HREF="intro.html#auth"
|
|
>EAP authentication methods</A
|
|
></DT
|
|
><DT
|
|
>1.5. <A
|
|
HREF="intro.html#AAA"
|
|
>What is RADIUS?</A
|
|
></DT
|
|
></DL
|
|
></DD
|
|
><DT
|
|
>2. <A
|
|
HREF="cert.html"
|
|
>Obtaining Certificates</A
|
|
></DT
|
|
><DT
|
|
>3. <A
|
|
HREF="freeradius.html"
|
|
>Authentication Server: Setting up FreeRADIUS</A
|
|
></DT
|
|
><DD
|
|
><DL
|
|
><DT
|
|
>3.1. <A
|
|
HREF="freeradius.html#instradius"
|
|
>Installing FreeRADIUS</A
|
|
></DT
|
|
><DT
|
|
>3.2. <A
|
|
HREF="freeradius.html#confradius"
|
|
>Configuring FreeRADIUS</A
|
|
></DT
|
|
></DL
|
|
></DD
|
|
><DT
|
|
>4. <A
|
|
HREF="xsupplicant.html"
|
|
>Supplicant: Setting up Xsupplicant</A
|
|
></DT
|
|
><DD
|
|
><DL
|
|
><DT
|
|
>4.1. <A
|
|
HREF="xsupplicant.html#instxsup"
|
|
>Installing Xsupplicant</A
|
|
></DT
|
|
><DT
|
|
>4.2. <A
|
|
HREF="xsupplicant.html#confxsup"
|
|
>Configuring Xsupplicant</A
|
|
></DT
|
|
></DL
|
|
></DD
|
|
><DT
|
|
>5. <A
|
|
HREF="authenticator.html"
|
|
>Authenticator: Setting up the Authenticator (Access
|
|
Point)</A
|
|
></DT
|
|
><DD
|
|
><DL
|
|
><DT
|
|
>5.1. <A
|
|
HREF="authenticator.html#AP"
|
|
>Access Point</A
|
|
></DT
|
|
><DT
|
|
>5.2. <A
|
|
HREF="authenticator.html#LinuxAP"
|
|
>Linux Authenticator</A
|
|
></DT
|
|
></DL
|
|
></DD
|
|
><DT
|
|
>6. <A
|
|
HREF="testbed.html"
|
|
>Testbed</A
|
|
></DT
|
|
><DD
|
|
><DL
|
|
><DT
|
|
>6.1. <A
|
|
HREF="testbed.html#testcase"
|
|
>Testcase</A
|
|
></DT
|
|
><DT
|
|
>6.2. <A
|
|
HREF="testbed.html#startrad"
|
|
>Running some tests</A
|
|
></DT
|
|
></DL
|
|
></DD
|
|
><DT
|
|
>7. <A
|
|
HREF="dynwep.html"
|
|
>Note about driver support and Xsupplicant</A
|
|
></DT
|
|
><DT
|
|
>8. <A
|
|
HREF="faq.html"
|
|
>FAQ</A
|
|
></DT
|
|
><DT
|
|
>9. <A
|
|
HREF="resources.html"
|
|
>Useful Resources</A
|
|
></DT
|
|
><DT
|
|
>10. <A
|
|
HREF="copyack.html"
|
|
>Copyright, acknowledgments and miscellaneous</A
|
|
></DT
|
|
><DD
|
|
><DL
|
|
><DT
|
|
>10.1. <A
|
|
HREF="copyack.html#copyright"
|
|
>Copyright and License</A
|
|
></DT
|
|
><DT
|
|
>10.2. <A
|
|
HREF="copyack.html#produced"
|
|
>How this document was produced</A
|
|
></DT
|
|
><DT
|
|
>10.3. <A
|
|
HREF="copyack.html#feedback"
|
|
>Feedback</A
|
|
></DT
|
|
><DT
|
|
>10.4. <A
|
|
HREF="copyack.html#ack"
|
|
>Acknowledgments</A
|
|
></DT
|
|
></DL
|
|
></DD
|
|
><DT
|
|
>A. <A
|
|
HREF="gfdl.html"
|
|
>GNU Free Documentation License</A
|
|
></DT
|
|
><DD
|
|
><DL
|
|
><DT
|
|
>A.1. <A
|
|
HREF="gfdl-0.html"
|
|
>PREAMBLE</A
|
|
></DT
|
|
><DT
|
|
>A.2. <A
|
|
HREF="gfdl-1.html"
|
|
>APPLICABILITY AND DEFINITIONS</A
|
|
></DT
|
|
><DT
|
|
>A.3. <A
|
|
HREF="gfdl-2.html"
|
|
>VERBATIM COPYING</A
|
|
></DT
|
|
><DT
|
|
>A.4. <A
|
|
HREF="gfdl-3.html"
|
|
>COPYING IN QUANTITY</A
|
|
></DT
|
|
><DT
|
|
>A.5. <A
|
|
HREF="gfdl-4.html"
|
|
>MODIFICATIONS</A
|
|
></DT
|
|
><DT
|
|
>A.6. <A
|
|
HREF="gfdl-5.html"
|
|
>COMBINING DOCUMENTS</A
|
|
></DT
|
|
><DT
|
|
>A.7. <A
|
|
HREF="gfdl-6.html"
|
|
>COLLECTIONS OF DOCUMENTS</A
|
|
></DT
|
|
><DT
|
|
>A.8. <A
|
|
HREF="gfdl-7.html"
|
|
>AGGREGATION WITH INDEPENDENT WORKS</A
|
|
></DT
|
|
><DT
|
|
>A.9. <A
|
|
HREF="gfdl-8.html"
|
|
>TRANSLATION</A
|
|
></DT
|
|
><DT
|
|
>A.10. <A
|
|
HREF="gfdl-9.html"
|
|
>TERMINATION</A
|
|
></DT
|
|
><DT
|
|
>A.11. <A
|
|
HREF="gfdl-10.html"
|
|
>FUTURE REVISIONS OF THIS LICENSE</A
|
|
></DT
|
|
><DT
|
|
>A.12. <A
|
|
HREF="gfdl-addendum.html"
|
|
>ADDENDUM: How to use this License for
|
|
your documents</A
|
|
></DT
|
|
></DL
|
|
></DD
|
|
></DL
|
|
></DIV
|
|
></DIV
|
|
><DIV
|
|
CLASS="NAVFOOTER"
|
|
><HR
|
|
ALIGN="LEFT"
|
|
WIDTH="100%"><TABLE
|
|
SUMMARY="Footer navigation table"
|
|
WIDTH="100%"
|
|
BORDER="0"
|
|
CELLPADDING="0"
|
|
CELLSPACING="0"
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
> </TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
> </TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
><A
|
|
HREF="intro.html"
|
|
ACCESSKEY="N"
|
|
>Next</A
|
|
></TD
|
|
></TR
|
|
><TR
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="left"
|
|
VALIGN="top"
|
|
> </TD
|
|
><TD
|
|
WIDTH="34%"
|
|
ALIGN="center"
|
|
VALIGN="top"
|
|
> </TD
|
|
><TD
|
|
WIDTH="33%"
|
|
ALIGN="right"
|
|
VALIGN="top"
|
|
>Introduction</TD
|
|
></TR
|
|
></TABLE
|
|
></DIV
|
|
></BODY
|
|
></HTML
|
|
> |