Security

Reply
New Contributor
Posts: 1
Registered: ‎08-31-2012

RADIUS with Windows NPS without a client certificate?

Is this possible? The users need to be able to login with their AD username/password but we don't have access to any of the machines so a client cert is not an option. Any ideas on how to make this work with an Aruba controller? Anything special?

Aruba Employee
Posts: 135
Registered: ‎06-18-2007

Re: RADIUS with Windows NPS without a client certificate?

A client cert is not required.  You can disable the requirement to validate server certificate on the client's wireless configuration.  You still need a cert on the NPS server for 802.1x authentication.

 

-Mike

MVP
Posts: 2,924
Registered: ‎10-25-2011

Re: RADIUS with Windows NPS without a client certificate?

[ Edited ]

Yes its possible as mnarine said..

What you want to configure here is EAP PEAP which only requires a certificate on the server... a certificate with machine template works fine...

 

Just a question

Why you posting this on guest access forum? are you planning deploying this for guest access?
 whats the idea behind this?

 

Cheers

Carlos

 

 

----------------------------------------------------
Product Manager - Aruba Networks
Alternetworks Corp
Regular Contributor I
Posts: 204
Registered: ‎09-28-2010

Re: RADIUS with Windows NPS without a client certificate?

Certainly possible using captive portal - we use it, and I'm not aware of any requirements for a certificate.

 

As far as I remember, you just put your NPS server in the profile.  I believe it defaults to NPS/RADIUS if user is not in the local database.

 

We offer a guest account that is rate-limited (in the local DB) and our other users just use their network credentials.

Search Airheads
Showing results for 
Search instead for 
Did you mean: