11.01.2012 20:51:02
xlup
Posts: 2
|
Hi to all,
I'm totally new to TekRADIUS and I'm doing some experiments to understand if is suitable for a couple of different configurations neded by a customer...
I started with the simple idea to upgrade a WPA2-PSK wifi network (a dlink dap3160) to WPA2-Enterprise: after some initial failures with the certificates all is now going fine and i was able to connect.
My first question is: I have used certificates generated with TekCERT (wonderful piece of software Yasin!) so, to avoid installing certificate on clients I disabled the verify option in the client settings....
if I use a server certificate issued from a trusted ca (i.e. verisign) is still needed to either disable the verification or install the certificate on client? This could simplify the configuration for temporary clients....
My second question is about additional radius attributes... is there a way to have tekradius tell the client to not request address via dhcp (that is a separate device on the lan) and use the ip address passed with framed-ip-address?
The thing I would achieve is to have addresses assigned by user and not by mac address (like we did with good old dialups... :-) )
As I mentioned I've tried the framed-ip-address settings with no success (address is still assigned from dhcp....) and i don't understand if this is a limitation of windows wpa implementation, or the access point, or other....
Thank you for the help!
Ciao!
Xlup
|
|
|
0
• permalink
|
12.01.2012 10:41:44
Admin
Administrator
Posts: 1833
|
Hi,
Many thanks for your feedback.
You can consider using TekWiFi to simplify user side configuration.
Most of access points do not support address assignment using Framed-IP-Address. Please see vendor resources.
Best regards,
Yasin KAPLAN
|
|
|
0
• permalink
|
12.01.2012 15:36:11
xlup
Posts: 2
|
Hi Yasin,
thank you for the reply
What about the question on trusted certificates? My aim is to be able to have clients that connect with only user/pw without having them to change settings, or install additional software....
Thank you!
Ciao!
Xlup
|
|
|
0
• permalink
|
12.01.2012 15:40:45
Admin
Administrator
Posts: 1833
|
As far as I know there is not a specific method to accomplish that.
|
|
|
0
• permalink
|