Security

Reply
Occasional Contributor II
Posts: 55
Registered: ‎10-18-2012

certificate in controller Vs RADIUS configuration

Hi,

 

We use WPA2 with AES and authentication is PEAP, microsot NPS as RADIUS and certificate is installed in RADIUS, connection terminates in RADIUS server. Could somone explain the difference in having connection terminates in controller vs a configuration where connection terminatesin RADIUS server, which is better and easy.

 

 

Thanks

 

Guru Elite
Posts: 7,836
Registered: ‎09-08-2010

Re: certificate in controller Vs RADIUS configuration

You should use NPS. Termination is easier in smaller deployments but offers less flexibility.

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Occasional Contributor II
Posts: 55
Registered: ‎10-18-2012

Re: certificate in controller Vs RADIUS configuration

Thank you, could you explain more about flexibility, advantage in controller termination.

 

 

MVP
Posts: 288
Registered: ‎08-27-2012

Re: certificate in controller Vs RADIUS configuration

Termination can allow the controller to handle the EAP portion of the authentication for situations where a standard compliant radius server isn't available. I believe you can use this in a situation where perhaps you wanted to do LDAP based auth and still need something to handle EAP. As it's already been said, there is really no advantage when you have NPS already running.
ACDX #419 | ACMP |
Guru Elite
Posts: 7,836
Registered: ‎09-08-2010

Re: certificate in controller Vs RADIUS configuration

Many times EAP termination requires you to install a supplicant on the client. Most environments use a RADIUS server like NPS/IAS or ClearPass

Tim Cappalli | Aruba ClearPass TME
@timcappalli | ACMX #367 / ACCX #480 / ACEAP / CWSP
Search Airheads
Showing results for 
Search instead for 
Did you mean: