We are getting ready to double our use of wireless networking at our company. There is a concern that we make it as easy to use as possible but at the same time protect the company network as much as possible. We are putting all access points on a separate VLAN but don’t think that is enough. In doing some research, we have found mentions of using RADIUS. Is that something we should look at?We are getting ready to double our use of wireless networking at our company. There is a concern that we make it as easy to use as possible but at the same time protect the company network as much as possible. We are putting all access points on a separate VLAN but don’t think that is enough. In doing some research, we have found mentions of using RADIUS. Is that something we should look at?— Via the InternetYes, Yes, Yes. RADIUS can add one more layer of protection to the network and make it a little harder for someone to get in. There are several ways to do it, depending on what sort of operating systems you have on your network. If you are a Microsoft shop, you can use Internet Authentication Server to help you do this. What you will need to look at is your domain setup. If you have more than one domain at your company, you will probably need to look at multiple IAS installs with a IAS proxy to point the access points to. If you are on W2K, this is going to present a challenge since W2K doesnt support RADIUS Proxy. This means you will need to look at Windows 2003, which does.If you are comfortable with Linux, there are several good RADIUS packages. One that I have seen mentioned more frequently is FreeRADIUS. This is a very flexible RADIUS implementation that should be able to do what you want. It can handle multiple domains on its own. In June, 2004, SysAdmin Magazine ran a good article on implementing FreeRADIUS; unfortunately, it is not online. O’Reilly’s RADIUS book discusses implementing FreeRADIUS as well. With either of these options, you will have to touch the wireless computers in terms of putting digital certificates on them and keeping them up to date. One positive advantage I have seen with these solutions is that the wireless access points become harder to find. I keep an iPAQ handy with miniStumbler installed. When working with the Microsoft solution, NetStumbler didnt report that it saw the access point that was configured to work with RADIUS. I expect the FreeRADIUS application to perform in the same way. Related content opinion Is anything useful happening in network management? Enterprises see the potential for AI to benefit network management, but progress so far is limited by AI’s ability to work with company-specific network data and the range of devices that AI can see. By Tom Nolle Nov 28, 2023 7 mins Generative AI Network Management Software brandpost Sponsored by HPE Aruba Networking SASE, security, and the future of enterprise networks By Adam Foss, VicePresident Pre-sales Consulting, HPE Aruba Networking Nov 28, 2023 4 mins SASE news AWS launches Cost Optimization Hub to help curb cloud expenses At its ongoing re:Invent 2023 conference, the cloud service provider introduced several new and free updates that are expected to help enterprises optimize their AWS costs. By Anirban Ghoshal Nov 28, 2023 3 mins Amazon re:Invent how-to Getting started on the Linux (or Unix) command line, Part 4 Pipes, aliases and scripts make Linux so much easier to use. By Sandra Henry-Stocker Nov 27, 2023 4 mins Linux Podcasts Videos Resources Events NEWSLETTERS Newsletter Promo Module Test Description for newsletter promo module. Please enter a valid email address Subscribe