Security

Reply
New Contributor

RADIUS, AAA and VPN connected to AD

Hey,

 

so I'm completely new to Aruba and haven't really worked with it. 

We are using Aruba as our Wifi network, so we have a 7010 controller and some 305 and 315 AP's which are working fine. 

We have a OpenVPN with tinyca, which we are growing too big for and we would like to have a RADIUS/AAA for authentication to our Wifi. 

 

I read a bit about the solution from Aruba, there is the Clearpass as RADIUS and VIA as VPN Client. 

Now my Questions: 

1. Can the Authentication to the Wifi network be done by AD account? 

2. How are the Certificated for VIA created for the user?(I just read that certifications are possible, but I couldn't find how it is done)

3. Can the User use the AD account to create the Cert / access the VPN?

4. Do we need the Licence for every Aruba Controller, or just for the ones providing the VPN access? 

 

thanks in advance :) 

 

Guru Elite

Re: RADIUS, AAA and VPN connected to AD

It's best to have a design discussion with your Aruba partner.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
MVP

Re: RADIUS, AAA and VPN connected to AD

Tim's right, but here are my general answers. You use case will be different which is where your partner will be able to help you.

 

1. Yes.

2 and 3. We use AD group policy to create and push certificates to managed devices, and the VPN client uses those certificates to access the VPN.

4. I don't know how licensing works for VPN (sorry)

--Matthew

if I've helped, please give kudos
if I've provided a solution, please mark the solution so others can find it
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: