Changes
→Select a connection method: New comparison table
== Select a connection method ==
The best option is [[EAP-TLS]], which provides strong, two-way authentication to ensure that neither you or the authentication server can be impersonated. Unfortunately, setting up EAP-TLS can be someonewhat involved because it requires a certificate to be installed on the device. If this is a problem, you should try [[PEAP-MSCHAPv2]] as it still provides somewhat strong authentication and allows connection to the encrypted VT-Wireless network.
[[VT_WLAN]] is an unsecure captive portal wireless network. It requires no set up at all, but you must log in with your PID and password every time you connect. Since it is not secure, it is simple for any and all unencrypted traffic on the network to be sniffed by anyone within range and is also vulnerable to deauthentication attacks. Its use is strongly discourage.
{| width="6080%" style="margin:12px auto"!
| style="font-size:1.5em;text-align:center" | [[EAP-TLS]]
| style="font-size:1.5em;text-align:center" | [[PEAP-MSCHAPv2]]
| style="font-size:1.5em;text-align:center" | [[w:Captive portal|Captive portal]]
|-
!
| valign='top' | EAP-TLS provides the strongest authentication available but is not supported on all devices and requires a somewhat involved one-time setup. For instructions, please refer to the [[EAP-TLS]] article.
| valign='top' | PEAP-MSCHAPv2 is supported by many devices and provides strong authentication. For setup instructions, please see the [[PEAP-MSCHAPv2]] article.
|-
! SSID
| VT-Wireless
| VT-Wireless
| [[VT_WLAN]]
|-
! Encrypted
| Yes
| Yes
| No
|-
! Authentication strength
| Strong, two-way
| Good
| Poor
|-
! Setup
| Involved
| Simple
| Negligible
|-
! Support
| Many devices
| Most devices
| All devices
|}
=Historical EAP-TLS Configuration=