1 / 10

MICROSOFT RADIUS SERVER

MICROSOFT RADIUS SERVER. Using RADIUS Within the Framework of the School Environment. Ed Register Consultant April 6, 2011. What is Our Goal?. Protect our wireless networks Security Liability Control Bandwidth usage. What is RADIUS?. Remote Authentication Dial In User Service

eydie
Download Presentation

MICROSOFT RADIUS SERVER

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. MICROSOFT RADIUS SERVER Using RADIUS Within the Framework of the School Environment Ed Register Consultant April 6, 2011

  2. What is Our Goal? • Protect our wireless networks • Security • Liability • Control Bandwidth usage

  3. What is RADIUS? • Remote Authentication Dial In User Service • Developed in 1991 – Mature Protocol • Client/Server protocol running at the Application Layer

  4. The 3 Functions of RADIUS (AAA) • Authentication Users or Devices BEFORE they connect to the network • Authorization Users or Devices for Network Usage • Accounting for usage of services

  5. Who Are the Players? • Laptops, iPhones, iPads, Androids, Workstations • Access Point, Network Switch • Wireless Controller (RADIUS Client) • Network Policy Server (NPS) (RADIUS Server) • Domain Controller (Active Directory) • Active Directory Certificate Services • Group Policy • DHCP • DNS

  6. Required Components • Domain Controller (2008 R2) • (Limited functionality with 2003) • AD Certificate Services* • 2003 Server this is simply called Certificate Services • Network Policy Server* • 2003 Server this is called IAS (Internet Authentication Server) • DHCP* • DNS* • Access Points that support 802.1x • LAN Controller *Built Into 2008 R2 Server

  7. How Do Clients Get Certificates? • If computers are in the domain • Group policy will push the certificates to the client • May take up to 20 minutes • Can speed process with ‘gpupdate /force’ • If not in the domain (new laptop) • Connect to wired network and join domain • Reboot • Log on to the domain 1 time as any user while wired

  8. Basic Configuration • Configure RADIUS • Client component on Wireless Controller • Server component on Network Policy Server • Install Certificate Services • Install Network Policy Server(s) Certificate • Group Policy is Configured • Push certificates to workstations • Push Wireless Policy to workstations • Create WirelessAccess group, add computers • Configure Network Policies on NPS

  9. Additional Technical Questions Ed Register – ed.register@pomeroy.com Thank You for Your Time

More Related