A simple guide to Wi-Fi security
Dos and Donts for protecting your wireless network
By Eric Geier | Network World US | Published: 10:35, 10 November 11
Do secure 802.1X client settings
The EAP mode of WPA/WPA2 is still vulnerable to man-in-the-middle attacks. However, you can help prevent these attacks by securing the EAP settings of the client. For instance, in the EAP settings of Windows you can enable server certificate validation by selecting the CA certificate, specify the server address, and disable it from prompting users to trust new servers or CA certificates. You can also push these 802.1X settings to domain-joined clients via Group Policy or use a third party solution, such as Avendaundefineds Quick1X.