O'Reilly logo

ScreenOS Cookbook by Sunil Wadhwa, Joe Kelly, Ken Draper, David Delcourt, Vik Davar, Stefan Brunner

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

3.4. Configure WPA Using 802.1x with IAS and Microsoft Active Directory

Problem

You want to secure a wireless network with WPA using 802.1x with IAS and Microsoft Active Directory.

Solution

Configure the auth-server using an account-type of 802.1x, and select Radius as the auth-server type:

	set auth-server "MyServer" server-name "172.24.28.199"
	set auth-server "MyServer" account-type 802.1X
	set auth-server "MyServer" radius secret "RADIUS_SECRET"

Configure the SSID with an authentication type of wpa-auto and an encryption type of auto; associate the 802.1x auth-server, and then bind the SSID to the wireless interface:

	set ssid name Secured
	set ssid Secured client-isolation
	set ssid Secured authentication wpa-auto encryption auto auth-server
	   MyServer
	set ssid Secured interface wireless0

Configure the infrastructure to enable traffic flow through the AP by creating a zone, attaching a wireless interface to the zone, configuring the IP address, enabling DHCP server service on the wireless interface, configuring the security policy, and finally, activating the wireless connection:

 set zone name "wzone1" set interface "wireless0/0" zone "wzone1" set interface wireless0/0 ip 172.16.254.1/24 set interface wireless0/0 dhcp server service set interface wireless0/0 dhcp server auto set interface wireless0/0 dhcp server option gateway 172.16.254.1 set interface wireless0/0 dhcp server option netmask 255.255.255.0 set interface wireless0/0 dhcp server ip 172.16.254.10 to 172.16.254.15 set policy ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required