Questions tagged [radius]

Remote Authentication Dial In User Service (RADIUS) is a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for computers to connect and use a network service.

RADIUS is a client/server protocol that runs in the application layer, using UDP as transport. The Remote Access Server, the Virtual Private Network server, the Network switch with port-based authentication, and the Network Access Server (NAS), are all gateways that control access to the network, and all have a RADIUS client component that communicates with the RADIUS server. The RADIUS server is usually a background process running on a UNIX or Microsoft Windows server.[3] RADIUS serves three functions:

to authenticate users or devices before granting them access to a network
to authorize those users or devices for certain network services and
to account for usage of those services.

Source: wikipedia

355 questions

votes

3 answers

How to integrate RADIUS with Kerberos?

We've got properly configured LDAP+Kerberos on our wired network. Now we want our users to log in to our WiFi network by using their normal credentials. I've found lots of HOWTOS about LDAP+RADIUS but none of them mention Kerberos in the pack. Can…

asked Nov 25 '10 at 15:36

minder

votes

2 answers

Login-time quota for VPN users

I have configured Routing and Remote Access Service in Windows Server 2003 as the VPN server. VPN users are defined in Active Directory which is running on this server too. How i can configure the server to give each user a limited download size…

windows-server-2008 vpn rras radius quota

asked Jul 21 '10 at 10:53

Isaac

votes

2 answers

Is it possible to use WPA Enterprise Mode without having to use or issue certificates?

Scenario... I have a wireless network that students use for Internet access. Each student has an Active Directory account. Is it possible to configure my APs to require them to use there AD credentials to connect to the network? If so, does that…

windows-server-2003 radius access-point wpa

asked Jun 29 '10 at 01:19

Corey

2,031
12
39
54

votes

1 answer

Is there a way to allow all external ip connections in FreeRadius?

I have a problem setting up FreeRadius server to allow connections from all external IP addresses. My hotspot system is based on CoovaAP and custom made captive portal which communicates with CoovaChilli (deployed on router, not on server). Router…

linux radius

asked Feb 19 '10 at 20:59

Dan Sosedoff

votes

5 answers

Central Authentication For Windows, Linux, Network Devices

I'm trying to find a way to centralize user management & authentication for a large collection of Windows & Linux Servers, including network devices (Cisco, HP, Juniper). Options include RADIUS/LDAP/TACACS/... Idea is to keep track with staff…

active-directory authentication ldap radius identity-management

asked Feb 17 '10 at 14:06

Mojah

votes

2 answers

MSCHAPv2 authentication not working

I've been fighting with this for around a week now. I'm trying to get a RADIUS server to authenticate against our Samba-based Active Directory, but I can't get it to work. Because of our infrastructure, PAP will not work. Because AD does not offer a…

active-directory radius samba4 freeradius

asked Mar 19 '18 at 18:14

Dessa Simpson

votes

2 answers

Setting up RADIUS Server for use by a VPN device

Currently we have a Vigor 3300 router that acts as our VPN server. At the moment we set up connections for home workers manually in the device. What I would like to do is remove this extra step and instead allow them to use their Active Directory…

vpn radius draytek vigor

asked May 14 '09 at 09:24

Martin

votes

1 answer

Microsoft NPS 2012 R2 - Can't perform authentication from Cisco ASA with PAP

I am trying to setup a Cisco ASA (version 9.1(7)6) to authenticate against a Microsoft Network Policy Server 2012 R2. The ASA is able to communicate with the NPS server, however the test aaa-server command returns AAA Failure. Checking the security…

windows-server-2012-r2 cisco-asa radius nps

asked Jul 18 '16 at 23:00

Muh Fugen

votes

1 answer

Authentication and logging of users for a Wireless ISP?

I have to upgrade a Wireless ISP's (WISP) network. Their current setup consists of a router (Mikrotik RouterBoard 1100AHx2), Ubiquiti Rockets (with sector antennas) for clients, and Ubiquiti NanoStations for client CPEs. Their security consists of…

networking dhcp isp radius

asked Sep 26 '15 at 16:51

hjf

votes

2 answers

What are the risks of adding third-party Root CA certificate into NTAuth Store?

What are the risks associated with import of third-party Root CA certificate into the Enterprise NTAuth Store in Windows domain except that the CA is then trusted to issue certificates? This is for test purpose to fix an issue with wireless clients…

windows-server-2012-r2 certificate-authority radius nps

asked Aug 14 '15 at 09:48

Volodymyr Molodets

2,424
9
36
52

votes

1 answer

Windows machines cannot connect to Radius Wifi

Environment Background: 4 Domain Controllers, DC01 DC02 DC03 DC04 DC01 is my PDC DC02 is my NPS Server The other two are load balancing and site specific. I'm using a Ruckus Zone Director with Ruckus WAPs in my office. Our environment consists of…

windows wifi radius peap

asked Jun 09 '15 at 22:03

user2920945

votes

1 answer

802.1x certificates, EAP-TLS, RADIUS and Windows machines

When using 802.1x certificate-based authentication on Windows machines, should I use different certificate for each machine? There is RADIUS server running in the network, the machines use EAP-TLS to talk to the network switch. If I should, how do I…

networking security certificate radius pki

asked May 01 '14 at 07:41

David

votes

1 answer

Registation or Guest VLAN for 802.1x via Microsoft NPS

I am currently working on a Microsoft NPS solution to provide 802.1x MAC authentication for wired and wireless clients along with providing a VLAN for the clients to be moved to. It currently works perfect with our Wireless APs and switches, however…

radius 802.1 nps

asked Dec 16 '12 at 13:23

dave

votes

2 answers

WPA2 Enterprise - Validating Identity

I cannot get WPA2 enterprise to work on my network. I will give you an overview of the current setup. Windows Domain, using IAS and its own CA Linksys WAP200 Access Point I setup the AP to use WPA2-Enterprise Mixed using RADIUS I setup and…

wifi linksys radius windows-ias-server wpa2

asked Jul 24 '09 at 14:54

ITGuy24

1,576
1
15
29

votes

1 answer

How do I go about Improving wireless security at the office (Radius? Certs?)

EDIT 1: Our environment is mixed, majority OSX with a few Windows and Linux boxes. More importantly, Android and Apple cellphones will also need wireless access on a regular basis. We have a redhat box available to run Freeradius on. All networking…

security cisco certificate wifi radius

asked Jul 22 '12 at 01:21

gozu

Prev 1 2

…

23 24 Next