Deploying Secure 802.11 Wireless Networks with Microsoft Windows

Recommended Security Configurations

The following are the recommended combinations of encryption and authentication for secure wireless networking in an organization:

• WEP and EAP-TLS

• WEP and PEAP-MS-CHAP v2

• WPA/TKIP and EAP-TLS

• WPA/TKIP and PEAP-MS-CHAP v2

More Info For more information about deploying these security configurations for an organization intranet, see Chapter 8, Intranet Wireless Deployment Using EAP-TLS, and Chapter 10, Intranet Wireless Deployment Using PEAP-MS-CHAP v2.

For the SOHO wireless network without a RADIUS server, the following combinations of encryption and authentication are recommended:

• WEP with a static WEP key and open system authentication

• WPA/TKIP and WPA with pre-shared key

More Info For more information about deploying these security configurations for a small business or home, see Chapter 12.