Wireless Access

Occasional Contributor II

Radius Authentication and TLS 1.2 without termination

Hi all,


I've tried to get my head around doing Radius Authentication with TLS 1.2 without using termination on my 7205 controller.


At the moment I have set registry key on the MS 2016 server running NPS to only allow TLS 1.0 and Radius works (With a locally self signed certificate, exported to the client etc (just for testing)) but as soon as I enabled more than TLS 1.0 it wont connect from an Windows 10 client.


How can i get TLS1.2 working without termination enabled?


+What is the best way to deny devices access? Ex. I dont want specific mobilephones on certain ssid?


Best regards,