Scenario - Windows 2000 Domain called ABC.com using IAS policies with PEAP authentication.
Question - Does the authentication of a wireless client go as deep as the SID of the client to authenticate? Or just the computer and user account info?
Could somebody create a domain the same as ABC.com and join their laptop to that domain using the same computer name, username and password as a computer on the real ABC.com domain. Then go into the building of ABC and get authenticated successfully onto the real ABC.com wireless network?
------------------------------------------------------------------------ View this thread: