Extreme Networks

Ilya_Semenov · ‎01-18-2018

Hello, everybody,

please, give me a link to some manuals.

I want to use one of two existing NAC installations as RADIUS to authorize AD users for an external system (Fortigate FG-600 firewall).

So, the questions are:

1) How to configure NAC to send authorization requests to AD domain controllers?
2) How to configure NAC be RADIUS server

Many thanks in advance,
Ilya

Ilya_Semenov · ‎01-19-2018

Hi, Stephan,

thank you...

Unfortunately, the article is unavaiable...

6049016372f24de5ac852f80782268bd_RackMultipart20180119-36900-168dld1-111_inline.jpg

Keene__Scott · ‎01-18-2018

Hello,

NAC is a RADIUS server but default.
To leverage AD you can proxy RADIUS to an NPS server or you can setup NAC to use LDAP/NTLM Authentication and authenticate users directly to AD (with no proxy to NPS).

Which are you looking to do?

You can see topics on this via the "Help" in NetSight or via our website where you download NAC/NetSight software.

*Note that Fortinet is not a supported Firewall if you are looking to authenticate VPN users through NAC...we only support Cisco ASA, Juniper SA, and Enterasys XSR. This information is in the Release Notes. You can likely use NAC for mgmt access to the Fortinet, however.

Regards,

Scott Keene
NMS/NAC Support
Extreme GTAC

Ilya_Semenov · ‎01-18-2018

Hi, Scott,

thanks for your reply.

Could you please explain what is a difference between proxying RADIUS requests to NPS and authenticate users directly to AD? What is an easiest way?

I do not need to authenticate VPN users, just wired and wifi users to allow them Internet access.

Thank you very much!

Extreme Networks

How to configure NAC as RADIUS to authorize AD users

How to configure NAC as RADIUS to authorize AD users