Point to Point link with external radius

Christos Stefaneskou · ‎02-10-2012

Hello.

I have a point to point link using 2 AP 1242.I'm using Wpa-psk with Aes encryption as security method.

The question is if it possible to secure a PtP link using an Eap method with an external radius server (Acs 5.3).

Has anyone tried this?

Thanks.

Christos.

Amjad Abdullah · ‎02-12-2012

Hey Chris,

I suppose you are using autonomous APs. right?

In this case and AFAIK, you use one AP as root and one as none-root.

The none-root will try to authenticate to the root when it connects. This means that the authenticator will be the root.So radius should be reachable to root bridge.

This way you can make it possible to use radius server to authenticate none-root AP to the root AP.

for creating EAP SSID on root AP you can use this config example (it shows 4.x ACS side. not 5.x. but you care more about AP config).

http://tiny.cc/d6hgd

change security config for your SSID from WPA-PSK to be EAP as in the example.

I hope this helps.

Rating useful replies is more useful than saying "Thank you"

Christos Stefaneskou · ‎02-13-2012

Thanks for your answer Amjad.

Case solved...

Finally i managed to secure the link using eap-fast and the external radius.

Regards.

Amjad Abdullah · ‎02-13-2012

Congrats Chris,

I am glad that it is working with you, especially with EAP-FAST.

please if you have the time rate my answer if it helps you to solve your problem.

Cheers,

Amjad

Rating useful replies is more useful than saying "Thank you"