[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


EAP-GTC Authentication Protocol

EAP-GTC (Generic Token Card), which is described in RFC 2284, enables the exchange of clear-text authentication credentials across the network. However, because one-time passwords generated by token cards are not vulnerable to replay attacks, EAP-GTC can be used by itself. EAP-GTC is typically used inside a TLS tunnel created by TTLS or PEAP to provide server authentication in wireless environments.

EAP-GTC is typically employed by enterprises that use two-factor authentication to avoid common password-based security vulnerabilities, such as exposure of passwords to third parties.

You configure the EAP-GTC protocol in the eap.ini File in Chapter 8, EAP Configuration Files of the Steel-Belted Radius Carrier Reference Guide.


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]