Specifications
Cisco Systems, Inc.
All contents are Copyright © 1992–2002 Cisco Systems, Inc. All rights reserved. Important Notices and Privacy Statement.
Page 18 of 42
6 Validation Lab
The authors built a Validation Lab to configure and test EAP-TLS deployment in an enterprise network scenario.
Figure 6-1 illustrates the Validation Lab setup:
Figure 6-1
Validation Lab
The following sections discuss the Validation Lab setup and configuration in detail. Configuration information is
provided for the Cisco Aironet access point, Cisco Secure ACS v3.0, and the Microsoft Windows XP Client. Note
that several different RADIUS servers and certification authority servers could be used for EAP-TLS deployment, as
noted in Section 5.1.
EAP TLS Client
Leap Client
Cisco Secure
ACS 3.0 Server
(RADIUS Server)
Windows 2000
Server Active
Directory + DHCP
+ DNS Server
Microsoft Certificate
Authority Server
(Private Root CA)
Windows Domain:
TME-LAB
Server-SW
Access-2
Access-1
Distribution-2
Distribution-1
Core-2
Core-1
Cisco Aironet 350
Cisco Aironet 350