Enterprise WIFI

Home
|
Solutions
|
Enterprise WIFI

PROTECT YOUR ENTERPRISE WIRELESS NETWORKS

The only solution which supports OTP for WIFI

Most companies are equipped with an Enterprise WIFI from Cisco or similar network device vendor. Wifi provides over-the-air bridging to your corporate infrastructure and for that, needs to be secured accordingly. The weak link in WIFI security is usually lack of strong authentication: access is granted either with a pre-shared key, or at best, with simple username and password.

A more secure way is to grant access on per-user basis, using IEEE 802.1X, and Multi-Factor Authentication (MFA).
OpenOTP supports IEEE 802.1X standard, providing EAP-GTC (commonly used with Cisco devices), EAP-TTLS-PAP and EAP-TLS authentication over RADIUS.

This means that employees can authenticate to corporate WIFI with:

Wifi Zone

- X.509 Certificates - Employees self-enroll certificates through an easy to use web-UI that's protected with one-time URLs and/or one-time codes, delivered via SMS for example. The same convenient way of self-service continues on certificate renewals, with users being automatically notified to re-enroll their certificate and are provided with a one-time URL to do that.

- One-Time Passwords - Users can concatenate Password with a one-time code from their preferred token provider, OpenOTP Token App, RC200/300/400, Google Authenticator or from any OATH compliant Hardware or Software Token.

- Push Login (aka. one-tap login) - User with OpenOTP Token App can authenticate to WIFI by simply pressing Accept on login that's pushed to their mobile.

AUTHENTICATION METHODS

Our solution for Wifi provides Two-Factor with all OpenOTP One-Time Password methods:

CERTIFICATES

X.509 Certificates

HARDWARE TOKENS

OATH Event, Time and Challenge -based

SOFTWARE TOKENS

Mobile-OTP (mOTP) Software Tokens

YUBICO TOKENS

YubiKey Standard, Nano

SOFTWARE TOKENS

OATH Event, Time and Challenge -based

PREFETCHED SMS

SMS OTP (Prefetched/on-demand)

MAILBOX

Mail and Secure Mail OTP (PIN Mailer)

PRINTED LIST

Printed OATH One-Time Password Lists

Read more about related products

OpenOTP Server

OpenOTP Radius Bridge

The only solution which supports OTP for WIFI

OpenOTP Two-Factor for Wifi access does not support the challenged OTP mode. It also requires password concatenation where the OTP password is concatenated with the domain password. Its usage is simple: Users select the network SSID and are prompted for their password(s). A WebADM client policy for your OpenOTP Wifi will let you decide if the users should login with domain password only, the OTP password only or both passwords concatenated.

More about EAP

EAP-TLS (EAP Transport Layer Security) was subsequently defined by IETF RFC 5216. The protocol was created as an open standard leveraging the TLS (Transport Layer Security) protocol and has found wide-spread support with the various wireless vendors on the market. It primarily consists of the original EAP authentication protocol and is still considered to be one of the most secure EAP standards on the market.