The most important in WLAN security is the process
of authentication. There are several techniques in
authentication process such as Internet Authentication Service (IAS), Network Policy Server (NPS Server), and
used active directory technique. In our work,
we proposed WLAN security used WPA2 enterprise base
on PEAP-MS-CHAP and firewall captive portal.
Protected Extensible Authentication Protocol (PEAP) is a
member
of the family of Extensible Authentication Protocol
(EAP) protocols. PEAP uses Transport Layer Security
(TLS) to create an encrypted channel between an
authenticating PEAP client, such as a wireless computer,
and a PEAP authenticator, such as an Internet
Authentication Service (IAS) or Remote Authentication
Dial-In User Service (RADIUS) server. PEAP does not
specify an authentication method, but provides additional
security for other EAP authentication protocols, such as
EAP-MS-CHAP v2, that can operate through the TLS
encrypted channel provided by PEAP. PEAP is used as
an authentication method for 802.1X wireless client
computers, but is not supported for virtual private
network (VPN) or other remote access clients.