WPA Enterprise (with Windows NPS) plus OC200, Radius packets originating from EAP instead of OC200

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

WPA Enterprise (with Windows NPS) plus OC200, Radius packets originating from EAP instead of OC200

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
WPA Enterprise (with Windows NPS) plus OC200, Radius packets originating from EAP instead of OC200
WPA Enterprise (with Windows NPS) plus OC200, Radius packets originating from EAP instead of OC200
2021-04-10 17:11:14
Model: OC200  
Hardware Version: V1
Firmware Version: 4.2.11

Maybe, I posted this is the wrong forum section?

So again here in the Omada SDN forum:

 

I had success setting up a test made of OC200, EAP600, Windows Server using NPS to authenticate clients using WPA Enterprise with EAP-TLS.

However, the requests to the windows radius server originate from the individual APs, not from the Controller (as I would expect) - however the radius secret which I entered into the OC200 is used.

Now, If I want to setup a larger network, I had to enter all accesspoints IPs (which even might not be static) into the Windows settings where the radius client is defined.

 

Is there a setting where I an enable the controller to do the authentication on behalf of the acesspoints?

 

 

  0      
  0      
#1
Options
2 Reply
Re:WPA Enterprise (with Windows NPS) plus OC200, Radius packets originating from EAP instead of OC200
2021-04-11 08:39:44 - last edited 2021-04-11 08:40:06

@valued_customer 

 

No, the controller itself does not as as an RADIUS-Proxy or RADIUS-REALM Forwarding units (which in such cases must always being online) to forward EAP-requests coming from all single EAPS arriving to the controller and the controller itself just forward them to the NPS radius with its own IP. If you have the windows edition capable of allowing you to enter subnet ranges instead of single IPs, it would perfectly fit..

 

  0  
  0  
#2
Options
Re:WPA Enterprise (with Windows NPS) plus OC200, Radius packets originating from EAP instead of OC200
2021-04-11 10:23:35

@Reaper78 

Thank you very much for the information regarding the option in windows server to accept a subnet as source for radius clients!

Pnly the "datacenter" edition supports this feature, Server standard is not able to do it.

 

 

 

 

 

  0  
  0  
#3
Options