Controllerless Networks

Reply
Highlighted
Occasional Contributor I

Using IAP internal Radius for Authenticating Windows computers and using MAC filtering

Hello

 

I expect to install about 10 IAPs for used to connect Windows 7 PC and Iphones to the WIFI using IAP VC.

The plan is to use Radius or LDAP.

 

Are their any advantages of using one over the other?

 

Can the internal radius be used to authenticate windows machines with Mac filtering or does it have to be an external radius server?

 

Thank you in advance

 


Accepted Solutions
Highlighted
Moderator

Re: Using IAP internal Radius for Authenticating Windows computers and using MAC filtering

I would use a RADIUS server and only allow machine authentication. This is much more secure than using the MAC address.



If this response is more than 1 year old, it may no longer be accurate. Please consult official Aruba documentation, TAC or your Aruba SE.

| Aruba Alumni | @timcappalli | timcappalli.me |

View solution in original post


All Replies
Highlighted
Moderator

Re: Using IAP internal Radius for Authenticating Windows computers and using MAC filtering

I would use a RADIUS server and only allow machine authentication. This is much more secure than using the MAC address.



If this response is more than 1 year old, it may no longer be accurate. Please consult official Aruba documentation, TAC or your Aruba SE.

| Aruba Alumni | @timcappalli | timcappalli.me |

View solution in original post

Highlighted
Occasional Contributor I

Re: Using IAP internal Radius for Authenticating Windows computers and using MAC filtering

Hi Tim,

 

Thanks much for the response.

Can the internal IAP radius server be integrated into a Windows Networking environment for Machine authentication or would I have to use an external radius server such as windows NAP server etc?

 

Thanks again

Edi

Highlighted
Moderator

Re: Using IAP internal Radius for Authenticating Windows computers and using MAC filtering

You would need something like Microsoft NPS (or ClearPass)


If this response is more than 1 year old, it may no longer be accurate. Please consult official Aruba documentation, TAC or your Aruba SE.

| Aruba Alumni | @timcappalli | timcappalli.me |