Posts Tagged ‘How to choose a VPN auth protocol’
2003 server - Tuesday, March 4, 2008 5:33 - 0 Comments
How to choose a VPN auth protocol
How do you decide which auth protocol to use on a VPN client?
Virtual Private Networking in Microsoft Windows supports several authentication protocols including EAP-TLS, mS-CHAPv2, and others. Which VPN authentication protocol should you use in which circumstance? Here’s a quick guide:
Use EAP-TLS if your VPN clients need to use smart cards or if your enterprise already has a CA in place that issues user certificates.
Use MS-CHAPv2 if you need to use a password-based authentication method, and make sure you force the use of strong passwords using Group Policy.
Use less secure auth protocols like MS-CHAP, CHAP and PAP only if you absolutely must for backward compatibility reasons.
Article written by MyComputerAid.com