This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Cloud Authentication AAA to connect to wifi

nathan_keys
New Contributor

‎06-13-2021 09:55 AM

Hey all,

We are a heavily cloud based organization and would rather not use an on-perm, even as hybrid, for our auth purposes to connect to company wifi. 

We have Azure AD and I've been experimenting with spinning up windows server instances in aws to connect to Azure but nothing seems to really work without having at least partial on-prem.

From my understanding, using cloudpath will accomplish what I am trying to do: connect azure to their servers which in turn all me to login with 802.1x AAA. My hope is to create this for ourselves but I'm unsure how to proceed. 

Thoughts?

0 Kudos
4 REPLIES 4

nathan_keys
New Contributor

‎06-13-2021 09:54 AM

Hey all,

We are a heavily cloud based organization and would rather not use an on-prem, even as hybrid, for our auth purposes to connect to company wifi. 

We have Azure AD and I've been experimenting with spinning up windows server instances in aws to connect to Azure but nothing seems to really work without having at least partial on-prem.

From my understanding, using cloudpath will accomplish what I am trying to do: connect azure to their servers which in turn all me to login with 802.1x AAA. My hope is to create this for ourselves but I'm unsure how to proceed. 

Thoughts?

Note: This comment was created from a merged conversation originally titled Cloud based AAA authentication
0 Kudos

eizens_putnins
Valued Contributor II
In response to nathan_keys

‎06-14-2021 02:48 AM

Actually, I don't think you need anything on-prem (except LAN and APs) , to use Radius or   Dynamic-PSK fot authentication.

          You can have vSZ installed in-cloud, and connected to NPS in-cloud, and you even don't need CloudPath for that (even so CloudPath is a nice tool to have and it will heavily improve client enrollment process).  We have some such installations.

0 Kudos

syamantakomer
Community Admin
Community Admin
In response to nathan_keys

‎06-14-2021 02:30 PM

Hi Nathan,

I think this is a duplicate thread of the another one.

https://forums.ruckuswireless.com/conversations/commscope-ruckus-cloud/cloud-authentication-aaa-to-c...


Syamantak Omer
Sr.Staff TSE | CWNA | CCNA | RCWA | RASZA | RICXI
RUCKUS Networks, CommScope!
Follow me on LinkedIn
0 Kudos

christopher_moh
New Contributor III

‎06-14-2021 05:20 AM

Hello,

Using Cloudpath, you can have your end users authenticate via Azure AD in a workflow.  We have a couple of guides posted in the documentation section of Cloudpath for Azure integration.  Using this integration, we can authenticate the users.

At the end of the workflow, Cloudpath can create a Device Configuration that installs a Certificate on the device.  That certificate is what is used to authenticate the user on the network.  Cloudpath, can be on-premise, but it is also hosted by Ruckus.  There is no need to have them authenticate back to Azure AD, your RADIUS server settings for cloud is pointed to your Cloudpath instance.

Copyright © 2024 Khoros, LLC