[afnog] Network Authentication
Phil Regnauld
regnauld at nsrc.org
Thu Aug 4 22:19:34 UTC 2011
Kasonda, P. Amon (amon.kasonda) writes:
> Dear All,
>
> I would like to implement a Network Authentication solution at
> our university campus, which has about 1000 active users at any given time.
> This includes students and staff. The network architecture is fine and is based
> on VLANS architecture. Students access internet through wireless, while members
> of staff access through the LAN (DHCP)in offices.
>
> The purpose of my writing is to seek advice on the best but simple Network
> Authentication strategy we can implement. We are trying to avoid a situation
> where anyone can plug in their laptops or computer to the network and access
> internet and other services without being prompted for login details.
>
> Your professional responses are highly appreciated.
Hi Kasonda,
I would definitely look at 802.1x based solution, including EAP/TLS
for wireless - most modern switches and Access Points support it.
Also, this can be automated so people don't have to explicitly log
in when using Windows clients that are also logged into a domain.
Cheers,
Phil
More information about the afnog
mailing list