EAP Methods/Alternatives
EAP-TLS
- mutual authentication using public key certificates between user and authentication server (RADIUS)
- establishes encrypted TLS session between the two
Protected EAP (PEAP)
- 2 stages
- RADIUS server authenticates itself using certificates
- user can use some other method available in EAP
Lightweight EAP (LEAP)
- Cisco proprietary EAP
- enables password based authentication for user