Secure wired network w/ 802.1x

[iLinkTech]

Hi all,

I'm looking for information on securing my wired network using 802.1x / EAP-TLS technologies. Basically, it's a Windows 2000 domain with all Windows XP clients in a fully switched environment.

I would like to set up the network so that if a computer on the network does not have a digital certificate that was issued by my CA, then it cannot obtain an IP address or communicate with any other node on the network.

I've seen switches that provide this level of "pass-through" so I don't think that the hardware will be a major issue. I'm simply looking for advice, experiences with this type of install, etc.

Thanks

 

[IPKONFIG]

My company is currently piloting this right now. If I can help let me know. I'll share what I know.

"I can picture a world without war. A world without hate. A world without fear. And I can picture us attacking that world, because they'd never expect it."
- Jack Handey, Deep Thoughts

 

[bcastner]

I just finished a book by Microsoft Press: "Deploying Secure 802.11 Wireless Networks with Microsoft Windows"

by Joseph Davies. Recommend it. You should be able to find this easily at a local bookseller or online.

It certainly helped me.