Hi,
I'm Planning to implement NAP & RADIUS Server to existing infrastructure currently we don't have any CA authority is it necessary to implement CA for RADIUS implementation
Thanks
Technology Tips and News
Hi,
I'm Planning to implement NAP & RADIUS Server to existing infrastructure currently we don't have any CA authority is it necessary to implement CA for RADIUS implementation
Thanks
Hi,
According to your description, my understanding is that you want to deploy NAP and want to know that if the CA authority is necessary.
It is depends on which NAP Enforcement Method and authentication method you use. For DHCP NAP, or VPN NAP with PEAP, CA is not necessary. For VPN NAP with PEAP-MS-CHAPv2, CA is necessary.
It is recommended to deploy strong enforcement methods, such as the IPsec, 802.1X, and VPN enforcement methods. Strong enforcement methods use certificate-based authentication methods and secure the channel between clients and servers through which the statement of health (SoH) and statement of health response (SoHR) are sent.
The article below lists methods of NAP, and each method has a link for simple description about deploying requirement:
https://technet.microsoft.com/en-us/library/cc753389(v=ws.10).aspx
Best Regards,
Eve Wang
Hi Eve,
Thanks For your help
Regards