User's Manual

● P AP : Pa ssword Au the ntica tion Protocol is a two wa y ha n dsha ke

protocol de s igne d for use with PPP. Au the ntica tion Protocol

Pa ssword Au the ntica tion Protocol is a pla in te xt pa s s word use d on

olde r SLIP syste m s. It is n ot se cure .

● CHAP : Cha lle n ge Ha ndsha ke Au the ntica tion Protocol is a th re e

wa y h a ndsha ke protocol wh ich is con s ide re d m ore se cu re tha n

PAP (Pa ssword Au the ntica tion Protocol).

● MS - CHAP ( MD 4 ) : Use s a Microsoft ve rsion of RSA Me ssa ge

Dige st 4 ch a lle n ge a n d re ply protocol. This only works on

Microsoft syste m s a nd e n a bles da ta e ncryption . This

a uthe n tica tion m e thod ca use s a ll da ta to be e n crypte d.

P EAP

PEAP is a n e w Extensible Au the ntica tion Protocol (EAP) IEEE 80 2 .1 x

a uthe n tica tion type de signe d to ta ke a dva nta ge of s e rve r-side EAP-

Tra nsport La ye r Se cu rity (EAP-TLS) a n d to support va rious

a uthe n tica tion m e thods , includin g use rs' pa sswords a nd one -tim e

pa s s words, a nd Ge ne ric Toke n Ca rds.

Cis c o Fe a t u re s

Cis c o LEAP

Cisco LEAP (Cisco Light EAP) is a se rve r a n d clie n t 802 .1x

a uthe n tica tion th rou gh a u s e r-supplie d logon pa s s word. Whe n a

wire le ss a cce s s point com m unica te s with a Cis co LEAP-e na ble d RADIUS

(Cisco Se cure Acce s s Control Se rve r [ACS]), Cisco LEAP provides

a cce ss con trol through m u tu a l a uthe n tica tion be twe e n clie n t wire le ss

a da pte rs a n d the wire le s s n e tworks a n d provide s dyn a m ic, in dividua l

use r e n cryption ke ys to he lp prote ct the priva cy of tra n s m itte d da ta .

Cis c o Ro g u e Ac c e s s Po in t S e c u rit y Fe a t u re

The Cisco Rogue Acce s s Point fe a tu re provide s se curity prote ction from

a n introduction of a rogu e a cce ss point tha t could m im ic a le gitim a te

a cce ss point on a ne twork in orde r to e xtra ct in form a tion a bout u s e r