View Categories

802.1X Auth Methods

EAP-PEAP (Protected Extensible Authentication Protocol) #

  • How It Works in Simple Terms:

    • EAP-PEAP creates a secure tunnel using encryption (TLS) to protect the login process.

    • It allows users to authenticate using a username and password while keeping their credentials safe.

    • Only the RADIUS server needs a security certificate, making it easier to set up.

  • Common Use:

    • Businesses looking for a balance between security and ease of use without requiring extra setup on user devices.

  • Netgraph Entrypoint enhances EAP-PEAP authentication by supporting:

    • Flexible management: By allowing administrators to manually and statically add users directly into specific groups. This capability provides precise control, enabling administrators to pre-define user access permissions based on organizational roles or departments.

    • Simplified onboarding: Providing the option for simplified onboarding through Self-Service Enrollment, where users can be automatically assigned access privileges upon their first login, reducing administrative overhead.

EAP-TLS (Extensible Authentication Protocol – Transport Layer Security) #

  • How It Works in Simple Terms:

    • EAP-TLS uses digital certificates instead of passwords to verify users.

    • Both the user device and the RADIUS server must have a certificate to prove they are trustworthy.

    • This makes it extremely secure but requires a system to issue and manage certificates.

  • Common Use:

    • Organizations that follow a Zero Trust security model, where every device must prove its identity before connecting.

  • Netgraph Entrypoint enhances EAP-TLS authentication by supporting:

    • Device Certificates: Ensuring that only trusted, enrolled devices can access the network.

    • User Certificates: Allowing authentication based on individual user certificates, improving security over password-based methods.

    • Backend Identity Store with Microsoft Entra ID: Verifying user identities against Microsoft’s cloud-based directory service, enabling seamless integration with existing identity management.

    • Intune Compliance Check: Enforcing security policies by verifying that devices meet compliance standards (such as OS updates, security patches, and encryption) before granting access.

    • Certificate validation: Supports automatic certificate validation through integrated Certificate Revocation Lists (CRL), ensuring that only devices with trusted, valid certificates can securely access your network.

Both Methods in Netgraph Entrypoint #

Both EAP-PEAP and EAP-TLS can be applied to the same Netgraph Entrypoint RADIUS-as-a-Service. This allows organizations to flexibly support different authentication needs while maintaining security and scalability.

Netgraph
Powered by  GDPR Cookie Compliance
Cookie Overview

What are cookies?

Cookies are small text files consisting of letters and numbers. These are sent from Netgraph Sverige AB or our partners' web servers and stored on your device (for example, computer or mobile). They can be stored in two different ways.

Session cookies are temporary cookies that disappear when you close your browser or app.
Persistent cookies are cookies that remain on your computer until you delete them or until they expire.

Different types of cookies

Both our website and others, such as Facebook or Google, may place cookies on your computer when you visit this website. Cookies from the website you are visiting are called first-party cookies and cookies from other websites are called third-party cookies.

Other files, similar to cookies, are web beacons and similar technologies. Web beacons are small transparent graphic images that may be contained in emails we send to you.

Why do we use cookies?

We use cookies to make your visit to our website as enjoyable as possible, and to improve it even more. However, we do not store IP numbers or similar personal data about you.

Functionality cookies improve your experience

We store cookies about the pages you have visited to make your experience on our website as smooth as possible. For example, we can prevent you from seeing a pop-up window more than once.

Analytics cookies help us to make our website better

We use cookies to collect aggregate analytical information about how you use the site, such as statistics on our most popular pages. With the information we get, we can improve our web and our offers.

Deleting cookies

Your browser or device usually allows you to set which cookies can be stored on your computer. For example, you can choose to block all cookies, only accept cookies from the website you are visiting or delete all cookies when you close your browser. Look under Settings.

Questions?

Do you have any questions about how we use cookies? You can always reach Netgraph Sverige AB's data protection officer at info@netgraph.se

This information was updated on August 26, 2024.