
	Home > Ask the Networking Experts > Wireless networking Questions & Answers > NAC solution authentication fix for your wireless network

Ask The Networking Expert: Questions & Answers

EMAIL THIS

NAC solution authentication fix for your wireless network

EXPERT RESPONSE FROM: Lisa Phifer

		Pose a Question

		Other Networking Categories

		Meet all Networking Experts
		Become an Expert for this site

Digg This!

StumbleUpon

Del.icio.us

QUESTION POSED ON: 20 January 2008
We are testing NAC solutions with our Aruba 802.11a/g wireless APs, using Windows 802.1X supplicants. When the user logs on, the Windows roaming profile download fails when the connection is re-established during transition from Machine authentication to User authentication. Do you know of any workaround for this problem?

Digg This!

StumbleUpon

Del.icio.us

RELATED CONTENT

	Wireless networking
	How radio frequency (RF) of microwaves alter wireless signal strength
	Stolen laptop recovery using remote access and wireless network SSIDs
	How is wireless access point (AP) coverage affected by frequency?
	Wireless AP SSID and channel configuration for a distribution network
	How 802.11n wireless APs in Greenfield mode affect nearby networks
	Monitoring your network to detect rogue access points (APs)
	Will 802.11x wireless products be compatible with 802.11n?
	How to find an SSID and identify neighboring WLANs
	How to create a Wi-Fi hotspot
	How to stop channel interference on 802.11x wireless access points

Network Access Control

Joel Snyder discusses Network Access Control Day at Interop Las Vegas

Maturing NAC market gets its first Gartner Magic Quadrant

Poor data-loss prevention practices almost cost Intel a billion

Network access control poised for a comeback by aiming small

Dynamic network access control secures electronics manufacturer

Shifting defenses and dynamic perimeters challenge network security

Compliance in a virtualized world: Server virtualization and NAC security

Securing the new network architecture: Security for distributed, dynamic networks

What is data loss prevention? -- An introduction to DLP

How to set passwords on folders in Windows 2003 servers

WLAN Security

Wireless LAN security: SonicWall joins crowded WLAN market

Stolen laptop recovery using remote access and wireless network SSIDs

Enterprise wireless LAN security: 802.11 and seamless wireless roaming

Monitoring your network to detect rogue access points (APs)

Persistent, secure connections for roaming WiMAX, 3G and 802.11x

802.11n's impact on WLAN security

Set up secure wireless networks with 802.11x, access points and bridges

How wireless network encryption affects signal strength, connectivity

New PCI compliance rules ban WEP, tighten wireless LAN security

How to avoid the WPA wireless security standard attack

RELATED GLOSSARY TERMS

Terms from Whatis.com − the technology online dictionary

network access control (SearchNetworking.com)

RELATED RESOURCES

2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems

Search Bitpipe.com for the latest white papers and business webcasts

Whatis.com, the online computer dictionary

A Windows roaming profile contains environmental information (like desktop items) associated with an individual who uses multiple computers. Whenever that user logs onto a Windows PC, his or her roaming profile is automatically copied from the domain controller to the local computer to provide a consistent environment.

Microsoft's website describes a roaming profile problem that might be what you're experiencing. Specifically, Windows XP users who authenticate with 802.1X and EAP-TLS or PEAP may intermittently fail to download their roaming profiles. According to knowledge base article 938117:

"This problem occurs because EAP-TLS and PEAP-TLS use a client certificate to validate the network connection. The roaming profiles that contain the certificate are stored on a domain controller. When you try to download the roaming profiles after you restart the computer, Windows XP also tries to re-authenticate the user. User re-authentication times out before you can download the roaming profiles."

Microsoft recommends two workarounds for this problem. Either stick to machine (computer) authentication only, or reduce the size of the roaming profile so that the download completes faster. You can configure either EAP-TLS or PEAP to "authenticate as the computer when computer information is available" by using the Authentication tab on the Wireless Connection's Properties panel.

Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.

Browse our Expert Advice
Operating Systems IT Management Networking Database	Security Servers and Storage Applications and Development Career Center

Expert networking advice and tips for IT professionals

SEARCH

TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.


TechTarget Corporate Web Site \| Media Kits \| Site Map All Rights Reserved, Copyright 2000 - 2009, TechTarget \| Read our Privacy Policy