-
NWA55AXE: Enhanced Authentication Services
Zyxel Networks has enhanced the capabilities of the NWA55AXE access point by adding support for full authentication services. This update brings significant improvements to this small business access point, now classified under the "Simplicity AP" category. Key Updates Expanded Authentication Options: Previously, the…
-
Can only specific MAC addresses be allowed to connect to an SSID?
To ensure that only certain MAC addresses clients can connect to the SSID, you can implement MAC-based Authentication feature. This method permits only devices with MAC addresses that are included in the Access Point's MAC address list to connect to the Wi-Fi network. For detailed instructions on how to set this up, please…
-
[ATP/FLEX]How to fix WAN1 for NCAS auth when WAN2 is UP but no internet connection?
Scenario : In a specific scenario, the USG Flex/ATP has two WAN interfaces: WAN1 for internet access and WAN2 for special intranet policy and static route purposes only. In this situation, when using WAN1 as the IPsec/L2TP remote VPN server authenticated by NCAS (Nebula Cloud Authentication Server), there are instances…
-
[ATP/FLEX] Does the group name in "External User Group" have to match the group on the AD server?
No, the group name doesn't have to match the group name on the AD server. In this example, AD_test_group is the group name on the AD server, and the group name on nebula is group1.
-
[ATP/FLEX] Is it possible to limit L2TP VPN authentication to the specified ad group?
Currently nebula doesn't support to limit L2TP VPN to a specified ad group user. It supports limiting L2TP VPN connection by different authentication method only.
-
[ATP/FLEX] Auth Fail with Cloud Authentication if use Remote Access VPN
Issue: Auth Fail with Cloud Authentication when you connected ikev2/l2tp VPN. Checking: In path: Organization-wide → Organization-wide manage → Cloud authentication 1)Please check you have allowd "VPN access" 2)Please check you already added the site to Authorized 3)Please check your Login type is Username or Email
-
[ATP/FLEX] How to Set up IKEv2 VPN tunnel and Authenticate with your RADIUS server on Nebula Gateway
Nebula Control
Center provides a VPN solution that allows remote VPN users to connect VPN
tunnels from Internet. This guide will assist in the configuration IKEv2 VPN tunnel
and authenticate with existing RAIDUS domain server. Set
up external authentication server setting Go
to Firewall > Configuration > Firewall Settings…
-
[ATP/FLEX] How to Set up IKEv1 VPN tunnel and Authenticate with your AD server on Nebula Gateway
Nebula Control
Center provides a VPN solution that allows remote VPN users to connect VPN
tunnels from Internet. This guide will assist in the configuration IKEv1 VPN
tunenl and authenticating with exist AD domain server. Set
up external authentication server setting Go
to Configure > Firewall > Firewall settings and…
-
[Nebula] Implement EAP-TLS and EAP-TTLS on Nebula Managed AP
Background Windows Active Directory Server are widely used to maintain enterprise inventory and employee information. Furthermore, we can utilize the information inside server for wireless authentication to raise the network security. Over several authentication credentials, the certificate is much securer than…
-
[NEBULA] How to control and secure network access with MAC-based Authentication?
There are many security mechanisms can be
applied to wireless environment. As more security mechanisms being used, it
becomes more complicated to access a network. MAC-based authentication allows
trusted wireless clients based on source MAC address to connect to the Nebula
AP. You can configure MAC authentication list
at…
-
[NEBULA] How to configure the AP Security with WPA2/3 Enterprise
Figure
1 Using WPA2 Enterprise authentication The example shows administrators how to configure the AP Security with WPA2/3 Enterprise. There are two ways for using WPA2/3 Enterprise for an SSID, Nebula cloud authentication, and My RADIUS server. Note: All configurations are used as examples in this article. Please replace…
-
[NEBULA] How to configure MAC-based Authentication for Wireless Network
MAC-based Authentication allows you to protect your network from unauthorized users without requiring your end devices to input or apply any security settings. 1. Go to Configure > Access point > SSID Advanced Settings and select the SSID. 2. In the Network access section, select "Open" or "Enhanced-open" or "WPA Personal…
-
[NEBULA] Captive Portal: Sign-in Facebook with Two-Factor Authentication using iPhone
With Facebook Two-Factor Authentication (TFA), an additional code via the Facebook App is necessary to complete the sign-in process. However, iPhones will general disconnect from the AP if you attempt to navigate away from the Apple CNA. This prevents guest clients from accessing their Facebook App to obtain the TFA code.…
-
How can I know if a user logged in Captive portal?
How can I know if a user logged in Captive portal? There are 2 methods to check the users logged in by the captive portal. One is through the client page, the other is through searching the event logs. 1. Go to Clients > Client list > choose Access point clients Under the AP client page, select "Authentication" to display…
-
[NEBULA] How to configure the AP Security with WPA2 Enterprise with external server?
Nebula provides the option to let users authenticate into wireless networks using WPA2 enterprise with My RADIUS server option, connecting to a domain controller located in the network. Note: The SSID network needs to be configured in order to apply 802.1X authentication for the clients connecting to the wireless network.…