Connect Tablet Running Windows 8.1 to Wireless Network Using RADIUS IAS
Posted on 2013-12-04
I need to get a tablet running Windows 8.1 connected to our company's wireless network. I believe I should do this using domain-user authentication.
For the RADIUS, we are using IAS on Windows 2003 R2. Here are some of the properties about the configuration of this RADIUS server:
For Remote Access Policies:
On the Wireless Properties window, we have:
NAS-Port Type matches "Wireless - Other OR Wireless - IEEE 802.11" AND
Windows-Groups matches "ABC\ABCWirelessUser_Sec"
Here, ABC is the domain.
For Connection Request Processing:
Connection Request Policies:
On the Use Windows authentication for all users Properties window, we have:
Policy name: Use Windows authentication for all users
Day-And-Time-Restrictions matches: "......
There are no restrictions here.
My laptop can connect to the wireless network. I believe I am using my AD credentials to authenticate. I also wonder if I should set the wireless settings on the tablet to be the same as on my laptop.
Here is the setup for my laptop hoping it might help you decide if authentication is via AD using a domain-user account:
On the ABC Employee Wireless Network Properties window, the laptop has:
On the Connection tab:
Name: ABC Employee
SSID: ABC Employee
Network type: Access Point
Network availability: All users
Connect automatically when this network is in range is checked.
On the Security tab, the laptop has:
Security type: WPA-Enterprise
Encryption type: TKIP
Choose a network authentication method:
Microsoft: Protected EAP (PEAP)
Remember my credentials for this connection each time I'm logged on is checked.
On the Protected EAP Properties windows, the laptop has:
Validate server certifiace is NOT checked.
Select Authentication Method:
Secured password (EAP-MSCHAP v2) is selected.
On the Advanced settings windows, the laptop has:
On the 802.1X settings tab:
Specify authentication mode is checked.
User or computer authentication is selected.
I think I should add the tablet to our domain, but I do not know to which OU/Container to do so. The ABCWirelessUser_Sec is a group in active directory.