Security with disjoined l2 networks

Similar Messages

• How can I create additional security with my ipad on a shared office network?

  How can I create additional security with my ipad on a shared office network?

  Haven't heard of any security explotes on the iPad.  That should tell you security has been built in.
  Great password.  Set up remote wipe in case iPad goes missing.  Backup iPad regularly.
  Robert

• WPA Security with the F5D7230-4

  Hey,
  I've successfully bridged my Airport Express from my Belkin F5D7230-4 with WEP Security enabled and it worked very well. Well, I should actually rephrase that; it worked well for all the Macs. The only PC on the wireless network couldn't establish a consistent connection, so I had to change the security to WPA and now everybody's computers work very well (WPA is actually desired). The only problem with WPA is that I can't get WDS to work with it, in other words, the Airport Express won't connect to the Belkin. After configuring the settings the same way as before (except changing the security) the Airport Express will first stay solid yellow, turn green for 2 or 3 seconds, and then flash yellow again. I have tried changing the wireless channel, and telling the Airport Express to just join (not WDS) while the Airport Express next to the Belkin, but still nothing worked.
  Wireless bridging is infact enabled on the Belkin, and I've also tried allowing only certain access points to connect, but that didn't work either.
  Is it possible that I'm not able to use WPA security with WDS on this Belkin router?
  It's a F5D7230-4 Belkin Router with 4.05.03 firmware, and the latest firmware is on the Airport Express.
  Thanks for any help in advance.

  Do you mean to get into the network? I do have a password WPA password set, and that's why the Airport Express can't access it.
  I need WPA set because a: the PC on the network needs it in order to connect, and b: it's much more secure.
  I pretty much need to have the security because the Belkin has it on, and to my understanding, the Airport Express also needs to have it enabled to work.
  Is there any update or anything available that could help my problem, or am I pretty much out of luck?

• WPA2 security with EAP-TLS user cert auth

  I am investigating the use of EAP-TLS for authenticating clients through a MS NPS radius server for WLC WLAN using WPA-WPA2 for security with 802.1x for auth-key managment. We're trying to decide whether to use PEAP and AD account authentication or require client certificates issued by AD certifcate services. PEAP is working fine if we choose that auth method in our NPS radius network policy, but if we switch this to "smart card or other certificate" for client cert auth it does not work. The wireless profile on the Windows client is set up for WPA2/AES with "Microsoft: smart card or other certificate" for network auth.  The 802.1x settings specify "User Authentication" and a user cert for the logged in user from ADCS is installed on the machine. The failure to connect reports "The certificate required to connect to this network can't be found on your computer". When I switch to Computer Authentication the error changes to "Network authentication failed due to a problem with the user account," though a valid machine cert also exists on the computer. 
  When I attempt to use cert auth I see no auth requests logged on the RADIUS server. I ran MS netmon on both the client and NPS server and I also see no requests coming in from the WLC to NPS. When using PEAP I do see EAP requests and responses between NPS and the WLC and radius requests logged.  On the client end I do see an EAP request to the WAP when attempting cert auth, but no messages between the WLC and NPS.
  It's also interesting that when I change the WLAN to use 802.1x and WEP encryption for layer 2 auth the cert auth  worked first time, though I haven't been able to get that working since. Windows now complains I am missing a cert for that. In any case, what I really want is WPA2/AES with 802.1x cert auth and would like to get this working.
  Is anyone using EAP-TLS with MS NPS radius and a WLC successfully? Any ideas on how to troubleshoot this or why I'm not seeing any traffic between WLC and NPS radius when attempting cert auth?

  Well Well
  WLC or any AAA client acts in pass through mode after initialy generating EAP-identity request so it has nothing to with EAP type. AAA client will behave the same no matter if you use PEAP , EAP-TLS or LEAP .....
  The error message that you have reported is clearly sayign that your client doesn't have certificate to submit agains the back-end authentication server and accordingly the process fails . If you are not saying anything sent from WLC to NPS , it makes sense , because when the WLC initialy generate eap-identity request your client fails to answer and accordingly nothing is being sent to NPS server.
  In order to verify that we need ' debug client < mac address of the client > ' from the WLC while trying to connect to make sure that is the case.
  Also make sure that your client has certificate that is binded to a user account defined on your AD in away or another to have it working.
  Please make sure to rate correct answers

• Security with CNet Router

  Hi everyone, I have a question about security with my iBook G4 Airport Extreme, and my home network.
  I have a 4 UTP and wi-fi router, CNet branded, and I like to know what are the main differences betwen the security setups:
  WEP
  WPA
  WPA2
  WPA2 Mixed
  and the use 802.1x authentication.
  Could anyone gime a short-first-class explanation?
  Thanks a lot,
  Pablo

  I like to know what are the main differences betwen the security setups:
  WEP
  WPA
  WPA2
  WPA2 Mixed
  and the use 802.1x authentication.
  Could anyone gime a short-first-class explanation?
  Wikipedia is a great source to answer your question:
  - WEP
  - WPA
  - WPA2
  - 802.1x

• I want to set up security for my linksys network.  I foll...

  I want to set up security for my linksys network.  I followed the directions outlined on the linksys web site.  I get through the process, create a password (key) and I save the settings.   When I try to log on from my laptop, I am asked for a password, however when I type the password in, the statement says "invalid number of caracters.  How do I get the password process to work so that I am able to secure my network.  Also, without security, can someone break into my laptop and corrupt my files.

  With WEP, you must enter WEP "key 1"  (found in the router)  into your computer, not the WEP password or passphase.
  However, you should be using WPA2, or at least WPA, and a strong password.
  If you use an unsecured wireless router, anyone within range can login and use your Internet connection. At a minumum, this means that they will be using your bandwidth. At worst, they could be uploading copyrighted music, sending spam email, distributing viruses, or downloading child pornography --- all from an account with your name on it!   Additionally, once someone is on your wireless network, they are in a very convenient spot to start attacking your computer.  They  have immediate access to all your shared files, and they could corrupt, steal, or delete them.  With some work, they could likely get to your other files also.  So my advice is --- secure your wireless network.
  To set up wireless security, you must use a computer that is wired to the router.
  Where to find the router settings: The router's login password is usually on one of the "Administration" pages. The other settings are all found in the "Wireless" section of the router's setup pages, located at 192.168.1.1
  First, give your router a unique SSID. Don't use "linksys".
  Make sure "SSID Broadcast" is set to "enabled".
  Next, leave the router at its default settings (except for the unique SSID), and then use your pc to connect wirelessly to the router. Test your wireless Internet connection and make sure it is working correctly. You must have a properly working wireless connection before setting up wireless security.
  To implement wireless security, you need to do one step at a time, then verify that you can still connect your wireless computer to the router.
  Next, encrypt your wireless system using the highest level of encryption that all of your wireless devices will support. Common encryption methods are:
  WEP - poor (see note below)
  WPA (sometimes called PSK, or WPA with TKIP) - good
  WPA2 (sometimes called PSK2, or WPA with AES) - best
  WPA and WPA2 sometimes come in versions of "personal" and "enterprise". Most home users should use "personal". Also, if you have a choice between AES and TKIP, and your wireless equipment is capable of both, choose AES. With any encryption method, you will need to supply a key (sometimes called a "password" ).
  The wireless devices (computers, printers, etc.) that you have will need to be set up with the SSID, encryption method, and key that matches what you entered in the router.
  Retest your system and verify that your wireless Internet connection is still working correctly.
  And don't forget to give your router a new login password.
  Picking Passwords (keys): You should never use a dictionary word as a password. If you use a dictionary word as a password, even WPA2 can be cracked in a few minutes. When you pick your login password and encryption key (or password or passphrase) you should use a random combination of capital letters, small letters, and numbers, but no spaces. A login password, should be 12 characters or more. WPA and WPA2 passwords should be at least 24 characters. Note: Your key, password, or passphrase must not have any spaces in it.
  Most home users should have their routers set so that "remote management" of the router is disabled. If you must have this option enabled, then your login password must be increased to a minumum of 24 random characters.
  One additional issue is that Windows XP requires a patch to run WPA2. Go to Microsoft Knowledge base, article ID=917021 and it will direct you to the patch.
  Sadly, the patch is not part of the automatic Windows XP updates, so lots of people are missing the patch.
  Note:
  WEP is no longer recommended. The FBI has demonstrated that WEP can be cracked in just a few minutes using software tools that are readily available over the Internet. Even a long random character password will not protect you with WEP. You should be using WPA or preferably WPA2 encryption.

• Security with Parallels Desktop

  If I install Windows using either Boot Camp or Parallels Desktop, can I rely on the Mac for security to the same extent as I could if I were running only OS X? Or should I install some sore of virus protection for the Windows OS?
  Thanks

  As a matter of fact, you can. If you are using Parallels with its default networking configuration, then your Mac is acting as a router for the PC. That alone will protect you from the most dangerous attacks. On the Mac or the PC, you will now only be vulnerable to "user-initiated" security problems. That means that if you use Internet Explorer on the PC, you can still get viruses and spyware. Use Firefox or, even better, Safari3 on the PC instead. If you are using Outlook on the PC, you are still vulnerable to viruses in e-mails. Use the Mac side to check your mail, if possible. And, of course, if you download and run any software from the Internet that you don't absolutely trust, you are taking a big risk. This applies to both platforms.
  I've never used anti-virus on any Mac or any PC I've ever had. No problems other than a little bit of spyware on the PC from when I accidentally used IE. Use IE only for Windows Update. If you use IE, you will get at least one spyware installed for each web site you visit, on average.

• I have a Palm Pre with the Sprint Network

  I have a Palm Pre with the sprint network and I couldn't or can't find my previous Palm Pre Account in the Palm network. My question How can I recover my original Palm account> I would figure I could just do it with my phone number but this doesnt seem to be the case. I have a replacement Palm coming tuesday and I was told I had to access my Palm account in order for them to save my information. How can I recover my account? 
  Post relates to: Pre p100eww (Sprint)

  Hi, and welcome to the Palm Support Community.
  Using the Search function on the Support page (link at the top of the page), I found this support article about recovering your Profile if you forget your email, password or security question.
  http://kb.palm.com/wps/portal/kb/common/article/19141_en.html#145
  Hope it helps.
  smkranz
  I am a volunteer, and not an HP employee.
  Palm OS ∙ webOS ∙ Android

• Window 8 WiFi problem with Cisco wireless network

  Anyone encounter a Windows 8 WiFi authentication problem with Cisco wireless network?
  We are using WLC 5508, 7.2.111, and AP 3602i with WPA2.
  Sent from Cisco Technical Support iPad App

  This problem occurred with Soney, and Dell models.  Lenovo with Windows 8 factory installed is working fine.
  Won't make any difference as these laptop's wireless NIC cards are different.
  Can you try with OPEN authentication.  If the Sony and/or Dell laptop works, then you start cranking up the security and/or encryption settings until you break them.
  I'm with Scott here:  It's got to be a wireless NIC card driver.
  As what George has stated, post the debug of the failed attempts.

• Airport Express Problem with Wired/Wireless networks simultaneously

  Hello,
  I'm having trouble maintaining a connection with my AX (2012) in a work environment.  Basically, I have a Win 7 laptop connected via ethernet to the internet/corporate net.  I have configured the AX to create a separate wifi network that does not connect to the internet. In order to connect to the AX, I have to disable both the Ethernet adapter and the WLAN adapter, enable the WLAN adapter, connect it to the AX's network, and wait for it to show up in the utility.  Only then can I re-enable the ethernet adapter for internet access.  Then, inevitably, the connection dies within 15 minutes and I have to repeat the whole process.
  Can anyone tell me what's going on here?  Is the wired network interfering with the wireless network?  Is something configured wrong?  Below is the output from ipconfig/all, if that helps.  The AX is configured with a 169.254 range. IP address and behaves the same way whether the IP address is auto or manual, and there is no difference if the signal roams channels or is fixed to a single channel (I've played with them all).
  Thanks in advance for your help. 
  Wireless LAN adapter Wireless Network Connection:
     Connection-specific DNS Suffix  . :
     Description . . . . . . . . . . . : DW1501 Wireless-N WLAN Half-Mini Card
     Physical Address. . . . . . . . . : 68-A3-C4-0C-CE-5B
     DHCP Enabled. . . . . . . . . . . : Yes
     Autoconfiguration Enabled . . . . : Yes
     IPv4 Address. . . . . . . . . . . : 10.0.1.2(Preferred)
     Subnet Mask . . . . . . . . . . . : 255.255.255.0
     Lease Obtained. . . . . . . . . . : Thursday, December 06, 2012 2:32:22 PM
     Lease Expires . . . . . . . . . . : Friday, December 07, 2012 2:41:43 PM
     Default Gateway . . . . . . . . . : 10.0.1.1
     DHCP Server . . . . . . . . . . . : 10.0.1.1
     DNS Servers . . . . . . . . . . . : 10.0.1.1
     NetBIOS over Tcpip. . . . . . . . : Enabled
  Ethernet adapter Local Area Connection:
     Connection-specific DNS Suffix  . : XXX.com
     Description . . . . . . . . . . . : Intel(R) 82577LM Gigabit Network Connecti
  on
     Physical Address. . . . . . . . . : 5C-26-0A-40-37-A9
     DHCP Enabled. . . . . . . . . . . : Yes
     Autoconfiguration Enabled . . . . : Yes
     IPv4 Address. . . . . . . . . . . : 3.197.129.227(Preferred)
     Subnet Mask . . . . . . . . . . . : 255.255.254.0
     Lease Obtained. . . . . . . . . . : Thursday, December 06, 2012 2:42:43 PM
     Lease Expires . . . . . . . . . . : Thursday, December 13, 2012 2:42:42 PM
     Default Gateway . . . . . . . . . : 3.197.128.1
     DHCP Server . . . . . . . . . . . : 3.156.134.20
     DNS Servers . . . . . . . . . . . : 3.156.130.30
  3.156.130.130
  3.23.190.40
                                         3.23.192.43
     Primary WINS Server . . . . . . . : 3.156.130.30
     Secondary WINS Server . . . . . . : 3.156.130.130
     NetBIOS over Tcpip. . . . . . . . : Enabled

  Here goes - read this through completely and see if it makes sense:
  1.  Reset the Express to factory settings by unplugging it and plugging it back in while holding in the reset button - release the button when the light starts blinking - then wait for the light to blink slowly indicating factory default.
  2.  Disable the wireless and enable the ethernet on the laptop and connect an ethernet cable to the WAN port (the circle of dots) of the Express and use the AU toset it up in bridge mode to create a wireless network with a name of your choice - you don't really need a password but you can assign one if you wish - if you do not use a password you will have to choose to ignore the error message for no security.
  3.  Accept all other defaults and ignore any messages about not having an internet or ethernet connection and update or finish the setup - if you get a blinking amber light, open the AU and correct any error messages.
  4. You can now disconnect the ethernet cable and disable the ethernet on the laptop and enable the wireless so you can stream iTunes to the Express - the laptop must stay wireless to do this - you can not accesss both at the same time - you can also use an iPhone or iPad or iPod to use Airplay and then you can use the laptop via ethernet for the internet.
  5.  To access the Express from now on, you have to use the AU wirelessly from the laptop.
  The above is assuming that you don't currently have wireless in your office - the other alternatives are:
  1.  To hardwire the Express and have it create a wireless network and access the internet - you could then use your laptop wirelessly or wired to connect to the Express and use Airplay and your pc at the same time.
  2.  If your office has wireless, you can set up the Express to "join" the existing network - you can then do the same as in number 1.
  I hope this helps - everyone's situation is different - the above scenarios work for me - you might have to do some tweaks but the info is there - let me know if you have any questions.

• TS1398 Got the dreaded no wifi on my wife's iPhone 4S. Wifi greyed out and no luck with the reset network instructions. Why isn't Apple addressing this issue? We are a family of Apple product users, 2 ipads, an ipad mini, 4 iPhones but one isn't working!

  Got the dreaded no wifi on my wife's iPhone 4S. Wifi greyed out and no luck with the reset network instructions. Why isn't Apple addressing this issue? We are a family of Apple product users, 2 ipads, an ipad mini, 4 iPhones but one isn't working! Issue began whenwe upgraded the operating system.....
  Come on Apple.....get this issue sorted out!

  Just out of warranty. This is a software issue. everything was ok until the software update. Apple just need to sort it out.

• Web Service Security with SAML - Invalid XML signature

  Hello together,
  we want to build a scenario where we want to use Web Service Security  with SAML.
  The scenario will be
  WS Client (Java Application) -> WS Adapter -> Integration Engine ->  WS Adapter-> CRM (Web AS ABAP 7.01 SP 3)
  SAP PI release is 7.11 (SP Level 4)
  We want to use the SAML Authentification from WS Client to PI and from PI to Web AS ABAP.
  The SAML authentifications between the WS Client and PI works when there is no SAML auth between PI and CRM.
  But we get following error at calling the CRM system when we want to communicate with SAML:
    <E_TEXT>CX_WS_SECURITY_FAULT:Invalid XML signature</E_TEXT>
  Has somebody an idea of the possible reason for the error.
  Thanks in advance
  Stefan

  Error Messages in the Trace/Log Viewer:
  CX_WS_SECURITY_FAULT : Invalid XML signature | program: CL_ST_CRYPTO==================CP include: CL_ST_CRYPTO==================CM00G line: 48
  A SOAP Runtime Core Exception occurred in method CL_ST_CRYPTO==================CM00G of class CL_ST_CRYPTO==================CP at position id 48  with internal error id 1001  and error text CX_WS_SECURITY_FAULT:Invalid XML signature (fault location is 1  ).
  Invalid XML signature

• TS1398 I have I-phone 4S - Since updating to IOS 6, when at home with Wi-Fi network with my I Phone connection is not responding sometimes – for example if I want to check my G-mail it shows loading but nothing happens and after few minutes it displays "C

  I have I-phone 4S - Since updating to IOS 6, when at home with Wi-Fi network with my I Phone connection is not responding sometimes – for example if I want to check my G-mail it shows loading but nothing happens and after few minutes it displays “Cannot Get Mail” – The mail server “imap.gmail.com is not responding, Verify that you have entered the correct account info in mail settings
  Other times the Wi-Fi connection works fine and it check e-mail or other within few seconds. The connection problems seems to be intermitted
  This issue never happened before with IOS 5 since I bought the new phone in Oct 2011.

  We suffered the imap.gmail.com server problem After an IoS 6 upgrade. The simple solution is to delete the problem account, shut down the iPad, start up again and reenter the account. Everything comes back normally. Good Luck everyone!

• Is there a way to print a pdf, which is secured with password?

  I want to know a way to print pdf which is secured with password to print without throwing a error ?
  Instead it has to ask for a password and print..

  we need to have an associated application installed in the system for that particular fileYup.
  does javax.print api works for pdf files and word documents?Nope.
  There is something called (I think) iText which can handle PDF documents. No idea whether it includes a printing facility or not.
  db

• What is the best way to get a time capsule to work with a new network name?

  What is the best way to get a time capsule to work with a new network name?

  Well it seems that you did not explain to us the full story.  Did you change ISP's or something? Why would it not show up anymore?
  What colour is the light on the time-capsule? If it's blinking amber, then you probably need to do a factory-reset. That should get it to show up again in AirPort Utility.