Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Captive portal with authentication server

    Scheduled Pinned Locked Moved
    Captive Portal
    2
    2
    222
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      charlasa
      last edited by

      Hi,

      We are currently using the captive portal feature, with a Radius authentication server. Everything is working fine, but we know that Mschapv2 without Eap is obsolete and is considered unsecured.

      We are wondering if it could be more secured to use an LDAPS authentication server instead ? We use 802.1X for on premise devices, but we have to use the captive portal feature for our byod network.

      Thanks

      1 Reply Last reply Reply Quote 0
      • Y
        yanqian
        last edited by

        Yes, you can use LDAPS authentication.
        You need to add LDAP authentication server in System / User manager / Authentication servers, select "SSL/TLS encrypted" in Transport option.
        You may test it using Diagnostics / Authentication.
        Then select the LDAP server you added in your captive portal settings (Authentication Server).

        As I recall, if I use Domain\Username or Username@Domain as user in CP login page, it will fail, but use only "Username" will be OK.

        1 Reply Last reply Reply Quote 1
        • First post
          Last post