pFsense + Radius +WPA2 Enteprise with EAP-TLS
-
Hi,
I would like to use my pfsense cluster as a radius server and authenticate users trying to access the wireless network in the office.
My idea is to use pfsense as a radius server and set up certificates for all users to use for EAP-TLS authentication for WPA2 Enteprise. I would like to use pfsense since it has an easy to use and neat interface to deal with certs - exporting, creating, deleting, revoking, etc ... I can do the same thing with freeradius on CentOS for example, but I would have to deal with CLI in all operations regarding certs or install a web interface and that's just one more thing that can be accessed, abused or broken.So my question : is there a way to use the pfsense as a freeradius, create the certs and use the nice interface to deal with the user certs ? If yes, is there a guide that you can point me at ?
Thanks! -
I run this for my trusted network.. All that is need to set it up is here
https://docs.netgate.com/pfsense/en/latest/recipes/freeradius-eap.html#eap-tls -
@alexmercer I did this recently. Followed the guide referenced above. No issues at all, worked first time.