PEAP and DHCP

[Guest]

When using PEAP authentication from a Windows XP workstation, does the EAP
exchange take place BEFORE or AFTER the DHCP address is assigned?

 

[Fritz]

According to its definition, the PEAP authentication takes place after the
system has an IP address since SSL/TLS rely on TCP connection.

"PEAP authenticates wireless LAN clients using only server-side digital
certificates by creating an encrypted SSL/TLS tunnel between the client and
the authentication server. The tunnel then protects the subsequent user
authentication exchange. "

 

[Guest]

Thanks, Fritz. Does anyone have further thoughts about the following
scenario: I have 2 DHCP servers running. I want my unauthenticated users to
get an IP address from DHCP-Server-1 and my PEAP-authenticated users to get
an IP address from DHCP-Server-2. Is there a way (Group Policy?, DCHP scope
settings?, etc.?) to accomplish this?