cancel
Showing results for 
Search instead for 
Did you mean: 

Authenticate AD computers in Aerohive Hive Manager (ExtremeCloudIQ)

Authenticate AD computers in Aerohive Hive Manager (ExtremeCloudIQ)

rkowals
New Contributor III

I need the ability for any AD computers to authenticate across the network so we do not have to enter the SSID passphase/Passcode if we make changes to the SSID Profile/Policies, and reduce the number of current SSID’s.

2 REPLIES 2

Ronald_Dvorak
Honored Contributor

Hi,

 

as John mentioned the part on CloudIQ is pretty easy and most of the things are done on the RADIUS server.

Here how the settings look for my 802.1X EAP-PEAP WLAN.

ce4f8453ef294bbbbe11c3d886bd1a0b_f91d4522-bef8-480b-9a03-570edab8a6bb.png

 

The RADIUS server (in my case ExtremeControl) will reply with either VLAN 1 or 200 according to my AD/LDAP groups.

ce4f8453ef294bbbbe11c3d886bd1a0b_fddcca39-4004-49b1-8d56-81fac044eda2.png

 

-Ron

w1f1n00b
Contributor II

This is probably a question better asked on a windows forum. You can use device AD accounts for authentication and use group policy so a computer will authenticate to an 802.1x SSID at boot. Then it can retain that authentication or re-authenticate with user credentials at login.

There are certificate options as well but I don’t know details of those methods.

 

GTM-P2G8KFN