Network Policy Server (NPS) as a Remote Authentication Dial-In User Service (RADIUS) server
Is a client-server protocol that enable radius clients to submit authentication and authorization requests to a radius server. The radius server passes the authentication request to an Identity Provider such Active Directory.
NPS performs authentication, authorization, and accounting for connection requests for the local domain and for domains that trust the local domain
In a WiFi network controller-based dominated by products such as Cisco, Aruba, Huawei, etc. and with the budget constraint, you can use Microsoft's NPS Radius feature. It is a more affordable way of implementing radius architecture in your network. The wireless controller is the source of RADIUS requests. In the case where there are no wireless controllers, the Access Points are the source of RADIUS requests.
Remote Authentication Dial-In User Service (RADIUS)
Is a client-server protocol that enable radius clients to submit authentication and authorization requests to a radius server.
The radius server passes the authentication request to an Identity Provider such Active Directory or to local database or even external database such as SQL.
Radius Client = Wireless Controller/Access Point
Requirements:
Port 1812 UDP Authentication
Port 1813 UDP Accounting
NPS Radius Server Certificate
Policies:
Connection Request Policies
Health Policies
Network Policies
With Wireless Controller
Without Wireless Controller
No comments:
Post a Comment