Solved

WPA Radius - AD only?

Posted on 2006-06-16
10
896 Views
Last Modified: 2008-05-30
Excuse me if I sound ignorant to this subject but, I am. I'm running 256bit WEP encryption and I'm going to soon be making that late jump to WPA. (As soon as I can figure out how it works). I've read a little about RADIUS but everything I see requires active directory. The way my network is set up is def not AD friendly so we haven't implemented it (plus the INSANE cost for CALS). Can someone explain how this really works?
0
Comment
Question by:prlit
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 3
  • 3
10 Comments
 
LVL 10

Expert Comment

by:naveedb
ID: 16924700
You do not need AD to implement radius. If you want a dedicated machine, just install Linux and Free Radius. Have a look at the following document:

http://www-128.ibm.com/developerworks/linux/library/l-radius/

If you wish to go with windows, your IAS without AD. Use local accounts for the RADIUS instead of AD.
0
 
LVL 1

Author Comment

by:prlit
ID: 16925242
What is IAS?
0
 
LVL 30

Expert Comment

by:ded9
ID: 16925335
check out this link hope will answer your query
http://www.visualwin.com/
scroll down to active directory

Reps
0
Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 1

Author Comment

by:prlit
ID: 16925344
hmmm, don't see anything about RADIUS or wireless security there. Am I missing it?
0
 
LVL 30

Expert Comment

by:ded9
ID: 16925428
0
 
LVL 30

Expert Comment

by:ded9
ID: 16925429
IAS stands for internet authentication service
0
 
LVL 10

Expert Comment

by:naveedb
ID: 16926595
On windows, RADIUS server is part of IAS (Internet Authentication Service). Just a name of service, like IIS can be used to describe WEB Server.
0
 
LVL 1

Author Comment

by:prlit
ID: 16927492
Well, if I have 30 remote locations with 5 wireless users at each - and no AD, what path should I take to implement WPA?
0
 
LVL 10

Accepted Solution

by:
naveedb earned 500 total points
ID: 16928546
If you need stability and you are looking at 150 users, if you have used Linux in past or have some understanding of Linux go with freeradius.

If you want to use windows, get a stable product like clearbox

http://xperiencetech.com/download/pricing.asp

If you really want a cheap solution, go with IAS.

In any event, when you have 150 users, make sure you have more then one RADIUS server to backup. Also, you need to make sure the connectivity to main site is stable. One RADIUS becomes unavailable either due to server issue or link issue, your clients will not be able to authenticate.


0
 
LVL 1

Author Comment

by:prlit
ID: 17033110
freeradius rox
0

Featured Post

Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Recently, Microsoft released a best-practice guide for securing Active Directory. It's a whopping 300+ pages long. Those of us tasked with securing our company’s databases and systems would, ideally, have time to devote to learning the ins and outs…
Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question