Network Security - 802.1X Authentication [40 mn de lecture - paru le 8/30/2006 11:28:28 AM - Public : Confirmé]

Auteur

Charly PERON Elève-Ingénieur Supinfo Paris Promotion SUPINFO 2006    Lui écrire    Tous les projets de cet auteur    Le mini-CV de cet auteur

Resume

The purpose of this article is to present to you a secure network architecture based on 802.1X authentication.

The 802.1X procotol will be detailed to understand it. It will be used with a server of authentication RADIUS based on "Internet Authentication Service" of Microsoft. The base of the users will be stored in the service of directory of Microsoft: Active Directory.

Other aspects of secure network will be approached: EAP protocol, RADIUS server, MD5-Challenge, network profile, policy of security based on the roles.

The last part of the document is a scenario of test applying the theoretical aspects to an environment of test.

Sommaire

• Introduction
• 1 802.1X Authentication
• 1.1 Ports administration
• 1.2 EAP Protocol
• 1.3 RADIUS Protocol
• 2 Network Architecture
• 3 RADIUS Authentication Server
• 3.1 Active Directory preparation
• 3.2 Internet Authentication Service (IAS)
• 4 Switches Configuration via Policy Manager 
• 4.1 Addition of material in Policy Manager
• 4.2 Configuration of the ports
• 4.3 Configuration of the RADIUS server in Policy Manager
• 4.4 Configuration of the switches
• 4.5 Configuration of the supplicants
• 5 Scenario of Test
• 5.1 Test environment
• 5.2 Process of test
• 5.3 Analyze of frame exchanges
• 6 Glossary
• Conclusion