0Pricing
Cyber Security Academy · Lesson

Enterprise Wi-Fi: EAP and RADIUS

Configure WPA2-Enterprise with EAP-TLS, understand certificate-based auth, and secure RADIUS servers.

Why Enterprise Wi-Fi?

WPA2-Personal uses a shared password — everyone knows the same secret. WPA2/WPA3-Enterprise uses 802.1X with individual credentials or certificates, enabling per-user authentication, revocation, and audit logs.

802.1X Framework

802.1X defines three roles: Supplicant (client device), Authenticator (AP/switch), and Authentication Server (RADIUS). The AP proxies credentials to RADIUS without knowing them.

# 802.1X flow:
# 1. Client connects to AP
# 2. AP blocks all traffic (uncontrolled port)
# 3. AP proxies EAP to RADIUS server
# 4. RADIUS authenticates client
# 5. RADIUS sends accept + session keys
# 6. AP opens controlled port for client

All lessons in this course

  1. 802.11 Security Protocols: WEP, WPA2, WPA3
  2. WPA2 Handshake Capture and Cracking
  3. Evil Twin and Captive Portal Attacks
  4. Enterprise Wi-Fi: EAP and RADIUS
← Back to Cyber Security Academy