Meraki Community
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

documentation.meraki.com suggests dangerous settings for Supplicants

martinpauly
New here
‎Feb 15 2019 7:48 AM
‎Feb 15 2019 7:48 AM

documentation.meraki.com suggests dangerous settings for Supplicants

On

https://documentation.meraki.com/MR/Encryption_and_Authentication/WPA2_Enterprise_Profile_Setup_on_A...

 

you seriously suggest to disable certificate validation in the Android supplicant.

8. Choose  Do Not Validate from the CA Certificate drop-down menu

 

WHAT THE HECK??

So I go and set up an AP broadcasting some company's SSID, along with some fake cert of mine.

And all the employee's phones come along, log on to my fake AP and leave their credentials with me.

Nice, eh? We have been discussing this in the eduroam community for > 10 years.

You simply don't do this or otherwise kick yourself out as a security company.

 

Sorry for my wording, but this is really bad.

Martin Pauly

Subscribe
0 Replies 0
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.