I'm trying to setup a WLAN for a customer where its employees can connect to the WLAN and authenticate using their Active Directory account. Is it better if I use 802.1x (FreeRADIUS) or just use ZD's built in Captive Portal (Web Authentication)? What are the advantages of using 802.1x? Setting up FreeRADIUS is a bit of a hassle.
By the way, can devices that are not joined to their domain connect to the WLAN either via the two options?
I configured an open WLAN using Standard type (no encryption) and the option for Web Authentication and Authentication Server are configurable (drop down menu) and our customer successfully authenticated using their AD account. This should be fine, right? Or is this less secure than AD via 802.1x authentication?
Congratulations, you have AD authenticated access thru our internal web portal.
Using 802.1x with a RADIUS front-end to the AD user/pw db, can exchange some Vendor Specific Attributes, if you wanted to change VLANs from the one you've setup for this WLAN now, for example. OTW, you have a secure authentication required wireless network access solution.