Hi Guys,
We are busy implementing a wireless solution in conjunction with a IPS device. We have a wireless network setup that we would like to secure using MAC address authentication. I understand that this is possible using RADIUS in Network Policy and Access Services in Server 2008 (Formerly Routing and Remote Access).
At the moment we have got the wireless running, it is handing out IP addresses from the wireless management device using DHCP and we have full internet access, happiness.
So.... I'm hoping that the below makes sense and that anybody can actually come up with some form of tutorials or guidelines they previously used as this seems to be something that isn't often setup.
What we now need to do is lock down that network to only allow specified MAC addresses onto the wireless network. To do this we are going to use the RADIUS authentication on the wireless controller and point that to the Network Access Server (NAS). We will then create a policy that will specify PAP authentication. The NAS needs to be configured to allow a group from Active Directory access using AD users that we specify the username as the MAC address of the NIC's.
If anybody has done this before or has some experience with RADIUS in 2008 please let me know where we are going wrong if we are?
We are busy implementing a wireless solution in conjunction with a IPS device. We have a wireless network setup that we would like to secure using MAC address authentication. I understand that this is possible using RADIUS in Network Policy and Access Services in Server 2008 (Formerly Routing and Remote Access).
At the moment we have got the wireless running, it is handing out IP addresses from the wireless management device using DHCP and we have full internet access, happiness.
So.... I'm hoping that the below makes sense and that anybody can actually come up with some form of tutorials or guidelines they previously used as this seems to be something that isn't often setup.
What we now need to do is lock down that network to only allow specified MAC addresses onto the wireless network. To do this we are going to use the RADIUS authentication on the wireless controller and point that to the Network Access Server (NAS). We will then create a policy that will specify PAP authentication. The NAS needs to be configured to allow a group from Active Directory access using AD users that we specify the username as the MAC address of the NIC's.
If anybody has done this before or has some experience with RADIUS in 2008 please let me know where we are going wrong if we are?
