Forum

  • an update:

    the problem with apple laptops is that they auto work out the security types i.e peap, mschap2, tkip and then they auto associate to a hidden SSID.

    the catch is that i think in my case the user was a decieving me. we use radius to pass on windows auths and at this stage he entered his lan active directory network username and password, this was enough to auth properly and get an IP address. he could then access the internet and using mozilla firefox with no security installed on his laptop bypasssing the proxy i.e potencial virus.
    the only current fix for me is to spot apple nic`s on the WCS (wireless control system) and disable the account on the ACS.

    other than this i would have to install a NAC server and do posturing for all clients who may want to access the network so they can get the right virus software and agree to the terms of use. expensive though and a fairly big project.

    iam looking into this route

Page 1 of 1
  • 1