When configured, the supplicant on my computer, must choose the authentication method among EAP-TLS, EAP-TTLS and PEAP. What is involved?
The 802.1x is an authentication frame, that is, the actual method via which user validation occurs, it is negotiated among those simultaneously available both by the supplicant and by the authentication server. EAP-TLS, PEAP and EAP-TTLS are among the authentication methods considered when using wireless networks because these, using a SSL/TLS encrypted tunnel, provide greater safety guarantees and support for the generation and exchange of encrypted keys used in WPA and 802.11i. EAP-TLS requires an X.509 digital certificate with the related private key on both the RADIUS server and on the supplicant. Often, given the difficulty of providing a company with a PKI X.509 capable of providing each user with a certificate we won’t consider the use of EAP-TLS, even if this method is definitely the most secure since the user doesn’t have to type a username or password. EAP-TLS is ideal when you want to authenticate network access via a smart card by storing the private key and the user certif
