Main Article Content

Authors

This  paper  presents  the  design  and  implementation  of  a  network  access  control  system  which  provides  the  Authentication,  Authorization  and  Accounting  (AAA)  service  using  GNU  Licensed  Software,  employing  the  standard protocols IEEE 802.1x and RADIUS, based on a Public Key Infrastructure (PKI), a centralized directory service, which stores the security policies assigned to each user, and a MySQL database, where the authentication events  of  the  AAA  service  are  registered,  all  of  this  was  tested  in  a  production  corporate  environment  with  300  workstations.  On  the  system,  it  was  achieved:  three  authentication  methods  by  using  EAP-TLS,  PEAP  and  EAP  TTLS; secure management of information, in a central database, about users that can access the network and the privileges that each of them own; use of digital certificates to prove the identity of a user or network device running any of the popular operating systems. Also has been configured a RADIUS Server to use two points of policy information, one of them is the OpenLDAP directory server, the other is the Active Directory from Microsoft. This enables a scalable network access control, without demanding a high budget.

1.
Arana JR, Villa L, Polanco O. Implementation of network access control by using authentication, authorization and accounting protocols. inycomp [Internet]. 2013 Jun. 5 [cited 2024 Dec. 22];15(1):127-3. Available from: https://revistaingenieria.univalle.edu.co/index.php/ingenieria_y_competitividad/article/view/2626