We are getting ready to double our use of wireless networking at our company. There is a concern that we make it as easy to use as possible but at the same time protect the company network as much as possible. We are putting all access points on a separate VLAN but don't think that is enough. In doing some research, we have found mentions of using RADIUS. Is that something we should look at?We are getting ready to double our use of wireless networking at our company.\u00a0 There is a concern that we make it as easy to use as possible but at the same time protect the company network as much as possible.\u00a0 We are putting all access points on a separate VLAN but don't think that is enough.\u00a0 In doing some research, we have found mentions of using RADIUS.\u00a0 Is that something we should look at?-- Via the InternetYes, Yes, Yes.\u00a0\u00a0RADIUS\u00a0can add one more layer of protection to the network and make it a little harder for someone to get in. There are several ways to do it, depending on what sort of operating systems you have on your network.If you are a Microsoft shop, you can use\u00a0Internet Authentication Server\u00a0to help you do this.\u00a0 What you will need to look at is your domain setup.\u00a0 If you have more than one domain at your company, you will probably need to look at multiple IAS installs with a IAS proxy to point the access points to.\u00a0 If you are on W2K, this is going to present a challenge since W2K doesnt support RADIUS Proxy.\u00a0 This means you will need to look at Windows 2003, which does.If you are comfortable with\u00a0Linux, there are several good RADIUS packages.\u00a0 One that I have seen mentioned more frequently is\u00a0FreeRADIUS.\u00a0 This is a very flexible RADIUS implementation that should be able to do what you want.\u00a0 It can handle multiple domains on its own.\u00a0 In\u00a0June, 2004, SysAdmin Magazine ran a good article on implementing FreeRADIUS; unfortunately, it is not online.\u00a0O'Reilly's\u00a0RADIUS book\u00a0discusses implementing FreeRADIUS as well.With either of these options, you will have to touch the wireless computers in terms of putting digital certificates on them and keeping them up to date.\u00a0One positive advantage I have seen with these solutions is that the wireless access points become harder to find.\u00a0 I keep an iPAQ handy with\u00a0miniStumbler\u00a0installed.\u00a0 When working with the Microsoft solution, NetStumbler didnt report that it saw the access point that was configured to work with RADIUS.\u00a0 I expect the FreeRADIUS application to perform in the same way.