Solved

Issues with Radius ond GPO on Server 2008 R2 to lock down out Wi-Fi

Posted on 2011-09-12
4
439 Views
Last Modified: 2013-12-27
I have a network that has SBS 2003 as the Domain Controller.  In addition, I have Server 2008 R2 that is part of the SBS domain.  I have configured Radius on the Server 2008 R2 using WPA2-Enterprise and using a Cisco WAP2000 as my Radius Client.

The config works if I manually configure the wireless connection. I get propted for AD credentials, I enter them and it works.  Here are the issues:
 
1.) I am constrained by SBS 2003 in creating my Wireless GPO Policy because WPA2-Enterprise is not option in the dropdown.  Is there a way around this ??

2.) How can I handle guests that come into the office that need to get on WI-FI ?  I wanted to just create a Guest type account for them to authenticate to get on the wirelees, since a guest laptop is not a laptop on the domain, the GPO doesnt work--is there anyway around that ?

Thanks,

John M. Olsen
0
Comment
Question by:CILLC
  • 2
  • 2
4 Comments
 
LVL 35

Expert Comment

by:Joseph Daly
ID: 36524012
We are running on a 2003/2003 domain and functional level but not SBS. I just checked our wireless group policy options and we have the option to use WPA2 available.

One thing you might want to try is adding the GPMC to a 2008 server and creating the group policy from there.
0
 
LVL 35

Accepted Solution

by:
Joseph Daly earned 500 total points
ID: 36524025
As far as the guest accounts you may need to set up a guest network for them and just provide the username/password. Im not sure if your wireless controller can do multiple networks but that is how we have ours configured.
0
 

Author Comment

by:CILLC
ID: 36524687
Hello,

SBS 2003 does not offer WAP2, much less WAP2-Enterprise.

Any other suggestions ?
0
 

Author Comment

by:CILLC
ID: 36524761

A simple way to put is "iIs there a way to make SBS2003 support WPA2-Enterprise?
0

Featured Post

Best Practices: Disaster Recovery Testing

Besides backup, any IT division should have a disaster recovery plan. You will find a few tips below relating to the development of such a plan and to what issues one should pay special attention in the course of backup planning.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question