CHG-2026-02-24: TEAP Implementation

Change Summary

Change ID

CHG-2026-02-24-TEAP

Date

2026-02-24

Classification

Normal Change

Risk Level

Medium

Status

Pending

Business Justification

TEAP (Tunnel Extensible Authentication Protocol) provides:

EAP chaining - machine + user auth in single session
Stronger security than PEAP
Better Windows integration
Reduced authentication round-trips

Current State

dsource d000 dev/network
netapi ise ers allowed-protocols list

Target State

New Allowed Protocols policy: TEAP-EAP-TLS
TEAP enabled with EAP-TLS as inner method
Existing EAP-TLS policy unchanged (fallback)