+ Post New Thread
Results 1 to 3 of 3
Wireless Networks Thread, Wireless - Active Directory - Radius - Pre-Login - Scripts - Ahhh! in Technical; edugeek ...I've looked over various thread over the last few weeks, what I'm looking for is a definitive answer to ...
  1. #1
    fr4j0's Avatar
    Join Date
    Apr 2011
    Location
    Scotland
    Posts
    4
    Thank Post
    2
    Thanked 0 Times in 0 Posts
    Rep Power
    0

    Question Wireless - Active Directory - Radius - Pre-Login - Scripts - Ahhh!

    edugeek...I've looked over various thread over the last few weeks, what I'm looking for is a definitive answer to a question that has plagued me for sometime....

    Is there any wireless vendor that supplies a out the box simple solution, if so who?

    And the question.... aka - the "holy grail of wireless"

    What I'm looking for is a wireless system with a central controller that can pre-login to a Active Directory server and allow a non-cached user to login to a wireless laptop/client and provide remote scripting/account desktop setting etc.

    Is this possible without a Radius implementation, by using a 'normal' AD server as if your were on a wired connection?

    Currently I can get only get a cached user to login to the local account, connect to the wireless, logout and then back in to provide their remote AD script/setting/network shares.

    I'm not looking for any work around or hacks, just a simple solution or definitive "NO", a Radius server is the _only_ way forward. (and if anyone would care to suggest a free Radius server install (any OS - freeradius?) etc that would be a bonus)

    thanks in advance.

  2. #2
    amfony's Avatar
    Join Date
    Jul 2007
    Location
    Sydney
    Posts
    161
    Thank Post
    29
    Thanked 13 Times in 13 Posts
    Rep Power
    17
    no with an if, or a yes with a but.

    yes, you can have a wireless laptop configured with WPA-PSK credentials that will allow it to participate on a WiFi network to allow it to authenticate (allow non cached users logons) BUT this is not an ultimately secure or scalable solution.

    no, IF you want premium security, scalability and granularity

    FreeRadius is a *nix based radius server, never used it. I know Geoff uses/used it and recommended it awhile back with packetFence.
    IAS (internet authentication service) is part of the windows 2003/2003r2 family and is free with the server license
    NPS (Network protection service) is part of the windows 2008/ 2008r2 family and is free with a server license

    HTH

  3. Thanks to amfony from:

    fr4j0 (7th November 2011)

  4. #3

    Join Date
    Dec 2009
    Location
    Woking
    Posts
    94
    Thank Post
    0
    Thanked 17 Times in 17 Posts
    Rep Power
    12
    I think what you are looking for is LDAP integration. This allows the wireless controller or access points to add themselves to AD and read user credentials without the use of a RADIUS server. Most enterprise kit will do this. I know for certain that both Aerohive and Juniper Network support this feature.

    But if you already have a AD server why not just enable IAS/NPS (microsofts 2003/2008 RADIUS server) it's free.

    Just re-read your post and it may be as simple as checking the box to allow "authenticate as computer when computer information is available" within the wireless properties. If computer authentication isn't enabled the laptop won't bring up the wireless connection until after the ctrl-alt-del screen.
    Last edited by paulfinlay; 7th November 2011 at 04:20 PM.

  5. Thanks to paulfinlay from:

    fr4j0 (8th November 2011)

SHARE:
+ Post New Thread

Similar Threads

  1. FreeRadius/Wireless & Active directory
    By russdev in forum Wireless Networks
    Replies: 10
    Last Post: 4th March 2011, 02:47 PM
  2. Netbooks + Wireless + Active Directory Logins
    By JoeyH in forum Wireless Networks
    Replies: 18
    Last Post: 18th November 2010, 01:49 PM
  3. Wireless bridgeing and Active directory replication
    By HodgeHi in forum Wireless Networks
    Replies: 5
    Last Post: 7th February 2007, 12:12 PM
  4. Script to set active directory object security
    By meastaugh1 in forum Windows
    Replies: 4
    Last Post: 5th January 2007, 04:28 AM
  5. Replies: 3
    Last Post: 16th November 2006, 09:55 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •