Nebula support for RADsec

n_j
n_j Posts: 11  Freshman Member
First Comment Second Anniversary
edited July 2 in Nebula Ideas

Please add radius support for RADsec to Nebula managed AP's.

2 votes

Active · Last Updated

Comments

  • Zyxel_Kay
    Zyxel_Kay Posts: 1,204  Zyxel Employee
    Zyxel Certified Network Engineer Level 2 - Nebula Zyxel Certified Network Engineer Level 2 - WLAN Zyxel Certified Network Engineer Level 2 - Switch Zyxel Certified Network Engineer Level 2 - Security

    Hi @n_j

    To better understand your usage and the need for this feature, could you please provide more details about your current network setup and how you envision utilizing RADsec with Nebula managed APs? Understanding your specific requirements and use cases will help us evaluate the feasibility and prioritize the implementation of this feature.

    Kay

    See how you've made an impact in Zyxel Community this year! https://bit.ly/Your2024Moments_Community

  • n_j
    n_j Posts: 11  Freshman Member
    First Comment Second Anniversary

    The goal is to use WPA Enterprise authentication for wifi, via a secure TCP/TLC to a SaaS radius service. To eliminate the need for internal PKI/radius infrastructure (and VPN tunnels to access that) for remote "intenet only" sites. E.g. to authenticate AzureAD joined computers.

    So both APs and Nebula need to support this configuration.

  • Zyxel_Melen
    Zyxel_Melen Posts: 2,575  Zyxel Employee
    Zyxel Certified Network Engineer Level 1 - Switch Zyxel Certified Network Administrator - Switch Zyxel Certified Network Administrator - Nebula Zyxel Certified Sales Associate

    Hi @n_j,

    Thanks for your input! We'll be monitoring the votes and comments as part of our evaluation process.

    If anyone likes this idea, please show your support by leaving a comment or voting for it.

    Zyxel Melen


  • zeal_x
    zeal_x Posts: 2
    First Comment Friend Collector

    I second @n_j here. RADsec support for Zyxel Switches & other hardware would make cloud-based RADIUS deployments easier, and more secure.

  • Zyxel_Kay
    Zyxel_Kay Posts: 1,204  Zyxel Employee
    Zyxel Certified Network Engineer Level 2 - Nebula Zyxel Certified Network Engineer Level 2 - WLAN Zyxel Certified Network Engineer Level 2 - Switch Zyxel Certified Network Engineer Level 2 - Security
    edited May 16

    Hi @zeal_x

    To better understand your request, could you please elaborate more on your use case of RADsec for the switch? Additionally, could you share with us how the RADsec protocol makes your cloud-based RADIUS deployments easier?

    Kay

    See how you've made an impact in Zyxel Community this year! https://bit.ly/Your2024Moments_Community

  • zeal_x
    zeal_x Posts: 2
    First Comment Friend Collector

    Hi @Zyxel_Kay

    Apologies, I overstated the significance of RADSEC by saying that it makes deployments easier.

    We would like to use RADSEC for a more secure 802.11x implementation on our switches. This would also be a lot better for others that want to use RADSEC authentication for their wireless infrastructure too.

  • Zyxel_Kay
    Zyxel_Kay Posts: 1,204  Zyxel Employee
    Zyxel Certified Network Engineer Level 2 - Nebula Zyxel Certified Network Engineer Level 2 - WLAN Zyxel Certified Network Engineer Level 2 - Switch Zyxel Certified Network Engineer Level 2 - Security

    Hi @zeal_x

    Thanks for your response. We would appreciate it if you could share more information with us. There are two additional things we would like to clarify:

    1. Could you please share the switches model that you are using?
    2. If we implement 802.1x on the Nebula Cloud Authentication Server (NCAS), will it fulfill your requirements? NCAS uses TCP/TLS, but currently, we only support MAC authentication with NCAS.

    Kay

    See how you've made an impact in Zyxel Community this year! https://bit.ly/Your2024Moments_Community

  • Zyxel_Kay
    Zyxel_Kay Posts: 1,204  Zyxel Employee
    Zyxel Certified Network Engineer Level 2 - Nebula Zyxel Certified Network Engineer Level 2 - WLAN Zyxel Certified Network Engineer Level 2 - Switch Zyxel Certified Network Engineer Level 2 - Security

    Hi @zeal_x

    We would appreciate it if you could share more details with us. Please take the time to clarify the points mentioned above.

    Kay

    See how you've made an impact in Zyxel Community this year! https://bit.ly/Your2024Moments_Community

Nebula Tips & Tricks