Best Practices
Implement the strongest form of wireless encryption available on your WAPs. Any form of encryption is better than no encryption. Even though WEP has known weaknesses, it is still better to enable WEP than to have no encryption at all if your WAP does not support WPA or WPA2. If you do implement WEP, ensure that you regularly modify the WEP key to protect against attacks against the WEP key.
Implement only WAPs that support 802.1x authentication. 802.1x authentication decreases some of the weaknesses associated with WEP encryption. 802.1x ensures that only authenticated clients (computers and users) can connect to the wireless network and provides automated distribution of the encryption keys.
Implement PEAP or EAP-TLS for authenticating ...
Get Microsoft® Windows® Security Resource Kit, Second Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
