Nebula support for RADsec

Options
n_j
n_j Posts: 11  Freshman Member
First Anniversary First Comment

Please add radius support for RADsec to Nebula managed AP's.

2 votes

Active · Last Updated

Comments

  • Zyxel_Kay
    Zyxel_Kay Posts: 637  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options

    Hi @n_j

    To better understand your usage and the need for this feature, could you please provide more details about your current network setup and how you envision utilizing RADsec with Nebula managed APs? Understanding your specific requirements and use cases will help us evaluate the feasibility and prioritize the implementation of this feature.

    Share yours now! https://bit.ly/4aO0BMF

    Kay

  • n_j
    n_j Posts: 11  Freshman Member
    First Anniversary First Comment
    Options

    The goal is to use WPA Enterprise authentication for wifi, via a secure TCP/TLC to a SaaS radius service. To eliminate the need for internal PKI/radius infrastructure (and VPN tunnels to access that) for remote "intenet only" sites. E.g. to authenticate AzureAD joined computers.

    So both APs and Nebula need to support this configuration.

  • Zyxel_Melen
    Zyxel_Melen Posts: 1,789  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options

    Hi @n_j,

    Thanks for your input! We'll be monitoring the votes and comments as part of our evaluation process.

    If anyone likes this idea, please show your support by leaving a comment or voting for it.

    Zyxel Melen

  • zeal_x
    zeal_x Posts: 2
    Friend Collector First Comment
    Options

    I second @n_j here. RADsec support for Zyxel Switches & other hardware would make cloud-based RADIUS deployments easier, and more secure.

  • Zyxel_Kay
    Zyxel_Kay Posts: 637  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    edited May 16
    Options

    Hi @zeal_x

    To better understand your request, could you please elaborate more on your use case of RADsec for the switch? Additionally, could you share with us how the RADsec protocol makes your cloud-based RADIUS deployments easier?

    Share yours now! https://bit.ly/4aO0BMF

    Kay

  • zeal_x
    zeal_x Posts: 2
    Friend Collector First Comment
    Options

    Hi @Zyxel_Kay

    Apologies, I overstated the significance of RADSEC by saying that it makes deployments easier.

    We would like to use RADSEC for a more secure 802.11x implementation on our switches. This would also be a lot better for others that want to use RADSEC authentication for their wireless infrastructure too.

  • Zyxel_Kay
    Zyxel_Kay Posts: 637  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options

    Hi @zeal_x

    Thanks for your response. We would appreciate it if you could share more information with us. There are two additional things we would like to clarify:

    1. Could you please share the switches model that you are using?
    2. If we implement 802.1x on the Nebula Cloud Authentication Server (NCAS), will it fulfill your requirements? NCAS uses TCP/TLS, but currently, we only support MAC authentication with NCAS.

    Share yours now! https://bit.ly/4aO0BMF

    Kay

  • Zyxel_Kay
    Zyxel_Kay Posts: 637  Zyxel Employee
    First Anniversary 10 Comments Friend Collector First Answer
    Options

    Hi @zeal_x

    We would appreciate it if you could share more details with us. Please take the time to clarify the points mentioned above.

    Share yours now! https://bit.ly/4aO0BMF

    Kay

Nebula Tips & Tricks