Dude! Thx a lot, you a my savior. Befriended cisco wlc + winserv nps with your guidance. P.S. Video need a bit explanation for CA certs and RAS IAS server templates for PEAP
Thanks , the WLC only needs to have the virtual interfaces for the vlans created, a separate DHCP and router actually provides the IPs and moves to traffic around. If you pause the video at 11:39 you can see the vlans that I created.
This is an amazing video. thank you for the detailed description. I have a question around meraki. what works best assigned static IP addresses or Dynamic?
Awesome tutorial! Thank you very much for sharing the knowledge! I was wondering though if I add a new AP to the RADIUS server which already has existing APs other than MERAKI and create the policy as stated in this video as a new policy, will it affect the existing APs? The thing is I wanted to add an AP from a branch office to the RADIUS server and set it up so that the staff from the branch office can use the wifi with AD as sign-in credentials but I am worried that once the policy stated in this video is added, the APs here in the main office might get affected. All the staff here use AD to sign-in and use the wifi.
Thanks for this valuable tutorial. It is well explained. I think this is unique on the web. Dynamic assigned vlans with NPS is not available in youtube except this course . Unfortunately I can't find anywhere to enable radius server overwrite interface on unifi to test dynamic vlan assignment in unifi environment. Is there any way to do that with unifi?.
I picked up an Ubiquiti AP-AC-Lite to try out - and it it small and quite good, and the RADIUS with Vlan assignment worked very well - which was unexpected :) In the Java Controller needed to drive the 'Lite' version:- Advanced Features -> RADIUS -> Enable RADIUS assigned VLAN for wireless network = set to 'on'
while video is good, but basically you are just using user credentials for verification, not certificate. Adding MSCHAPv2 allows you to just use user credentials. Try EAP TLS and make a video on that
![Securing RADIUS with EAP-TLS [Windows Server 2019]](http://i.ytimg.com/vi/SgAjEuCAFzE/mqdefault.jpg)
![Securing RADIUS with EAP-TLS [Windows Server 2019]](/img/tr.png)
Thanks for this video. I was tripped up on the Allow AAA Override checkbox. Now everything is working perfect! Thanks
Great to hear!
This video is amazing! I love the idea of one SSID separated by VLANs.
Dude! Thx a lot, you a my savior. Befriended cisco wlc + winserv nps with your guidance. P.S. Video need a bit explanation for CA certs and RAS IAS server templates for PEAP
Just wanted to say thank you for this.
Excellent demo and succinct useful information.
Really useful video - got our config working a treat. Thanks
thanks for this amazing video. It helpful
great video, I have doubts with the controller configuration, do you have any configuration associated with vlan 70 in the controller?
Thanks , the WLC only needs to have the virtual interfaces for the vlans created, a separate DHCP and router actually provides the IPs and moves to traffic around. If you pause the video at 11:39 you can see the vlans that I created.
This is an amazing video. thank you for the detailed description. I have a question around meraki. what works best assigned static IP addresses or Dynamic?
For Me, best to leave all Meraki WAPs as DHCP.
Awesome tutorial! Thank you very much for sharing the knowledge!
I was wondering though if I add a new AP to the RADIUS server which already has existing APs other than MERAKI and create the policy as stated in this video as a new policy, will it affect the existing APs?
The thing is I wanted to add an AP from a branch office to the RADIUS server and set it up so that the staff from the branch office can use the wifi with AD as sign-in credentials but I am worried that once the policy stated in this video is added, the APs here in the main office might get affected.
All the staff here use AD to sign-in and use the wifi.
Use the 'Client IP Address' in the NPS Policies to differentiate which APs are to 'match' which policy :)
Thanks for this valuable tutorial. It is well explained. I think this is unique on the web. Dynamic assigned vlans with NPS is not available in youtube except this course .
Unfortunately I can't find anywhere to enable radius server overwrite interface on unifi to test dynamic vlan assignment in unifi environment. Is there any way to do that with unifi?.
I picked up an Ubiquiti AP-AC-Lite to try out - and it it small and quite good, and the RADIUS with Vlan assignment worked very well - which was unexpected :)
In the Java Controller needed to drive the 'Lite' version:-
Advanced Features -> RADIUS -> Enable RADIUS assigned VLAN for wireless network = set to 'on'
This is so helpful. Thank you for doing such a detailed demo on Radius. What causes the devices from authenticating?
the access between the WAP and your RADIUS server - check ACLS and FW rules...
while video is good, but basically you are just using user credentials for verification, not certificate. Adding MSCHAPv2 allows you to just use user credentials. Try EAP TLS and make a video on that
EAP-TLS is all Certificate based , not one of my strengths unfortunately...