[Nebula] Implement EAP-TLS and EAP-TTLS on Nebula Managed AP

Zyxel_Richard
Zyxel_Richard Posts: 96  Zyxel Employee
edited October 4 in Nebula Access Point

Background

Windows Active Directory Server are widely used to maintain enterprise inventory and employee information. Furthermore, we can utilize the information inside server for wireless authentication to raise the network security. Over several authentication credentials, the certificate is much securer than username/password, and In the wireless network, there’re two popular approaches using certificate: EAP-TTLS and EAP-TLS. The former approach uses certificate to protect authentication traffic and verify server’s identity (make sure the client is connecting to a trusted server), and uses username and password for client authentication. Meanwhile, the latter one uses certificate for both server and client authentication.

This document includes the process for constructing an environment using EAP-TTLS and EAP-TLS when APs are managed in Nebula Control Center, which covers configurations on client device and Nebula Control Center. Help user to deploy their network easily and efficiently.

 

Topology

 



Check the attached file for complete configuration process.