cancel
Showing results for 
Search instead for 
Did you mean: 

XIQ Needs To Support Google Workspace

XIQ Needs To Support Google Workspace

RhinoPete
New Contributor

With the big push of Extreme wireless to schools over the last several years this needs to be implemented since every school district we work with is using Chromebooks and they are starting to require 802.1x which Google supports through Secure LDAP.  We have implemented this on every other wireless platform we deploy just not successfully with XIQ even though everything seems to be there for the configuration.  I just got this response from GTAC...

"Pete. I reached out to my superiors and confirmed that we do not support Google Workplace for RADIUS/Wireless SSID authentication. Jake S."

This is not acceptable.

4 REPLIES 4

tfsnetman
Contributor

Any chance you got 802.1x with Google working? @RhinoPete



Gily
New Contributor

You may use ppsk as alternative way, there is XIQ-GSuite-PPSK-Sync Script on Github which can syn GSuite user groups with PPSK user groups. Just FYI, I haven't tested it. https://github.com/extremenetworksSA/XIQ_Gsuite_PPSK_Sync

Brent_Addis
Contributor

You mean like this?

https://cloud.kapostcontent.net/pub/bc0cc7af-1b17-4406-b377-0e2980bdcb9c/google-g-suite-and-extreme-...

I don't think you'd want this in XiQ itself to be honest, it's kind of a big deal to implement, and might slow things down overall. Running it as part of your NAC (Which is designed for advanced authentication requirements) is a far better idea and is the kind of scenario you would use it with.

-----
-Brent Addis / Extreme Black Belt #491

New to Extreme? Check out the Welcome series here - https://training.extremenetworks.com/welcome-series-1
Want to join the official Extreme learners discord? Let me know!

Not full access control, just user authentication/verification to be able to log onto the wireless.  You can configure LDAPS with certificates and everything Google requires within XIQ but for some reason it just will not connect to ldap.google.com to authenticate even though we can resolved the fqdn and using ldapsearch we can verify connectivity to it from CLI from Site Engine.  So it is operational, just the APs won't use it properly.  What's the point of having all the options in XIQ to make the connection for it to not even try?

GTM-P2G8KFN