ИССЛЕДОВАНИЕ ПОДХОДОВ ДЛЯ АУТЕНТИФИКАЦИИ ПОЛЬЗОВАТЕЛЕЙ БЕСПРОВОДНОЙ СЕТИ С ПРИМЕНЕНИЕМ РАЗЛИЧНЫХ LDAP РЕШЕНИЙ.

Abstract

Intoduction: every year, the technology of the IEEE802.11 family of networks is becoming more widespread and popular. Based on the possible risks, IT administrators take measures to protect their organizations. One of the ways to improve information security is to use IEEE802.1 x for user authorization. Purpose: the purpose of the study is to study various LDAP solutions for user authorization in a wireless network. Results: three variants of the centralized solution for authorization of users of a wireless network on the basis of operating systems are developed: Windows Server, Ubuntu Linux, and Astra Linux. When working with Windows Server, it was found that you can use the Active Directory LDAP database to store user credentials. The study also showed that if the network infrastructure of the organization needs to implement a server using the Linux operating system, then the FreeIPA database can be used as an LDAP database, and the role of the RADIUS server must be entrusted to the FreeRADIUS software. The advantage of this approach is that all the software required for user authorization is free. Despite the fact that Active Directory is the most popular LDAP database-FreeIPA meets all the needs that arise during security administration. Practical relevance: each solution has passed load testing and can be implemented in the network infrastructure of organizations. Discussion: the choice of operating system and LDAP database for user authorization completely depends on the requirements of the organization, so one of the proposed implementation options will fit each requirement.