CommScope RUCKUS Community Forums

nadun_gayashan · ‎05-20-2020

Hi,

I want to understand about (802.1x) certificate based wireless authentication with ruckus without domain user or machine authentication.

Q 1, can do it?
Q 2, if can do it, how to authenticate domain and non-domain
computers?
Q 3, how to configure ruckus ZD WLC and windows NPS &
Certificate server? (If anyone has the guide. please share)

syamantakomer · ‎05-21-2020

Hi Nad,

Please find the response below.

Q 1, can do it?
Ans: Yes you can configure ZD with NPS for cert based authentication (EAP-TLS)

Q 2, if can do it, how to authenticate domain and non-domain
computers?
Ans:

For domain users you have to push the certificate using windows server Group Policy.
For non domain users you have to find a way to push the certificate using onboarding SSID. This will still require a server which can provide a package file including WLAN profile and client certificate for authentication. I recommend using Cloudpath for this. For more info refer below link.
https://www.commscope.com/product-type/enterprise-networking-carrier-wi-fi-cbrs/network-access-polic...

Q 3, how to configure ruckus ZD WLC and windows NPS &
Certificate server? (If anyone has the guide. please share)

Ans: Yes, please refer the article

https://support.ruckuswireless.com/articles/000002109

Note: Not all the details given in above article but major part of the configuration is covered.

Regards,
Syamantak Omer

nadun_gayashan · ‎05-25-2020

Thanks for the reply. I think it's helpful to me.

CommScope RUCKUS Community Forums

Regarding certificate base authentication