Hello Lisa, Are you aware of any software for Wi-Fi enabled PDA's that would provide them the capability to use...
EAP-TTLS or PEAP?
The scenario I'm currently working on requires corporate Wi-Fi based Laptop & PDA users, have access to the corporate LAN services [e-mail, print & file share etc] via Cisco APs, using their current network [wired] user credentials on the NTLM-SAM database.
There are WLAN vendors like Proxim/Agere that support EAP-TTLS, but you?d need third-party client software for your PDA. To my knowledge, Funk?s Odyssey Client and Meetinghouse?s AEGIS Client (both EAP-TTLS) are not yet available for WinCE platforms.
Microsoft is now shipping PEAP support in Windows XP SP1 and the IAS RADIUS server supplied with Windows .NET, so you might reasonably expect to see PEAP support in some future version of WinCE. But definitely not yet.
Cisco released new Win32 Aironet drivers that support PEAP this week, but new WinCE drivers for PEAP are not yet available. However, Cisco Aironet v2.22 drivers do support LEAP on HPCs running WinCE 2.11 or 3.0, or Pocket PCs running WinCE 3.0, equipped with Cisco Aironet 340, 350, and 4800 PC cards. LEAP of course is not PEAP or EAP-TTLS. But it does allow you to perform user-based authentication against a RADIUS server that supports LEAP (like Cisco ACS). The newest Cisco ACS v3.1 supports both LEAP and PEAP authentication against NTLM-SAM user databases. So this solution could work for you, if you don?t mind running ACS as your RADIUS server or upgrading to your ACS server to v.31. You?d probably be able to migrate to PEAP in the future, after Cisco releases new WinCE drivers.
Related Q&A from Lisa Phifer
The enterprise mobility management market for wearable devices is in its infancy, but IT can still use existing EMM tools to manage wearables.continue reading
Wireless expert Lisa A. Phifer explains to what extent WEP cracking remains a worrisome issue. It all depends on your company's WLAN security policy.continue reading
Wireless expert Lisa A. Phifer explains why you shouldn't stop using 802.1X authentication methods for enterprise WLAN access control.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.