• Status: Solved
  • Priority: Low
  • Security: Public
  • Views: 37
  • Last Modified:

How to Windows NPS with clients with dynamic IPs

Windows Server 2016 NPS (Radius) with clients on dynamic IPs.  Most of what I'm reading seems to indicate that this isn't possible unless it is a small range of IPs.  I have a LOT of wifi access points and want to use Radius for authentication, however some of those access points have dynamic IPs.  Is there a way to setup a Radius client in NPS that allows for any IP?  (0.0.0.0/0 for example)
0
Tim Phillips
Asked:
Tim Phillips
2 Solutions
 
Cliff GaliherCommented:
I don't think it is possible. And from a security standpoint, it'd be terrible practice anyways. A major component in any good RADIUS deployment is the logging and auditing. And with a dynamic IP client  that becomes meaningless. At the very least, you should be using DHCP reservations so your clients always have the same IP. And that should be documented for any future log/forensic analysis and incident response.
0
 
MaheshArchitectCommented:
There is no way NPS can track radius clients (AP) with changed (Dynamic) IPs, because the primary method to communicate with these radius clients is their IP and not hostname
U have to use static only
0
 
Tim PhillipsWindows Systems AdministratorAuthor Commented:
Its a bummer, but yeah that's what I thought.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now