Re: Radius server in a DMZ, how to authenticate AD users ?

From: jwgoerlich@xxxxxxxxx
Date: Tue, 12 Jun 2007 15:05:04 -0700

You can make the Radius/IAS server a domain member on a DMZ. See if
these two articles help:

Windows Server 2003 Technical Library > Planning for IAS as a RADIUS
Server
IAS as a RADIUS server security considerations
http://technet2.microsoft.com/windowsserver/en/library/bfa1451a-6f53-4792-98a0-00d10977fd2c1033.mspx?mfr=true

Securing IAS: IAS and firewalls
http://technet2.microsoft.com/windowsserver/en/library/bfa1451a-6f53-4792-98a0-00d10977fd2c1033.mspx?mfr=true

Regards,

J Wolfgang Goerlich

On Jun 12, 4:35 am, Pascal <pasca...@xxxxxxxxxxxxxxxxxx> wrote:

Hello,

we have a wifi project and we would like to authenticate Active
Directory users.

Is there a way to add the Radius server in a DMZ without being member
of the AD domain and authenticate the wifi users ?

Do you know basic secure infrastructure for such a situation ?

Thank you

--
Pascal

References:
- Radius server in a DMZ, how to authenticate AD users ?
  - From: Pascal

Prev by Date: Re: Resetting administrator password
Next by Date: Re: Radius server in a DMZ, how to authenticate AD users ?
Previous by thread: Radius server in a DMZ, how to authenticate AD users ?
Next by thread: Re: Radius server in a DMZ, how to authenticate AD users ?
Index(es):
- Date
- Thread

Relevant Pages

Aironet 1200/MS Radius Help - Yet Again
... Your collective help thus far has made me understand more about wireless ... RADIUS/IAS Server. ... I also got a certificate from verisign to install on one of the two IAS ... there are communications between the client and access ...
(microsoft.public.internet.radius)
RE: Internet Authentication Service Issues
... I think the problem should be caused by that the SBS 2000 server (IAS ... In SBS system there is no Trust will be available. ... Microsoft CSS Online Newsgroup Support ...
(microsoft.public.windows.server.sbs)
Re: Redundant IAS servers
... > additional IAS servers as RADIUS clients to my central IAS ... > server but that is not the redundancy I'm after. ... central IAS server configuration to a file, ...
(microsoft.public.internet.radius)
Re: 802.1x Wired Auth and Authentication
... is installed on the NPS or IAS server rejected the connection request. ... This means that you have an IAS authentication extension DLL installed. ...
(microsoft.public.internet.radius)
Re: EAP-TLS Radius problem
... In this circumstance you have two choices to allow IAS to authenticate and ... The IAS server in Domain 1 forwards connection requests to a remote ... connection requests to another IAS server that is a Domain 2 member. ... Policy to all domain members as well as the cert of the root CA into ...
(microsoft.public.internet.radius)