Scribd
Upload
73 views25 pages

The Queen'S College It Open Morning: Microsoft Network Policy Server + Vlans/Acls

This document discusses network policy server (NPS) and how it authenticates devices on a network using 802.1x credentials or MAC addresses. It places clients in the correct VLAN and sends other RADIUS attributes. It provides examples of NPS configuration on a network switch, specifying settings for 802.1x authentication, RADIUS server configuration, VLAN assignment, and MAC-based authentication. Alternative authentication solutions like Bradford Network Sentry and Aruba ClearPass are also listed. Additional reading on NPS is recommended from a Lynda.com course.

Uploaded by

Judson Borges
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
73 views25 pages

The Queen'S College It Open Morning: Microsoft Network Policy Server + Vlans/Acls

This document discusses network policy server (NPS) and how it authenticates devices on a network using 802.1x credentials or MAC addresses. It places clients in the correct VLAN and sends other RADIUS attributes. It provides examples of NPS configuration on a network switch, specifying settings for 802.1x authentication, RADIUS server configuration, VLAN assignment, and MAC-based authentication. Alternative authentication solutions like Bradford Network Sentry and Aruba ClearPass are also listed. Additional reading on NPS is recommended from a Lynda.com course.

Uploaded by

Judson Borges
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 25

The Queen’s College

IT Open Morning
Microsoft Network Policy Server + VLANs/ACLs
What does it do?
• Network Policy Server
• Authenticates devices based on
• 802.1x Credentials
• Username/Password
• Certificate
• MAC Address
• Places the client in the correct VLAN + send other RADIUS Attributes
Alternatives…
• Bradford Network Sentry
• Aruba Clear Pass
• PacketFence
Network Switch Config
aaa port-access gvrp-vlans
aaa authentication port-access eap-radius
radius-server host 172.16.0.2 key <key!!> aaa port-access authenticator 1-8
radius-server dead-time 1 aaa port-access authenticator 1-8 quiet-period 30
aaa port-access authenticator 1-8 tx-period 2
radius-server timeout 3
aaa port-access authenticator 1-8 supplicant-timeout 2
radius-server retransmit 2
aaa authentication login privilege-mode aaa port-access authenticator 1-8 server-timeout 10
aaa authentication ssh login radius local aaa port-access authenticator 1-8 max-requests 3
aaa authentication ssh enable radius local aaa port-access authenticator 1-8 reauth-period 600
aaa port-access authenticator 1-8 auth-vid 1
aaa port-access mac-based addr-format no-delimiter
aaa port-access authenticator 1-8 client-limit 3
aaa port-access authenticator active
aaa port-access mac-based 1-8
aaa port-access mac-based 1-8 logoff-period 862400
aaa port-access mac-based 1-8 quiet-period 30
aaa port-access mac-based 1-8 server-timeout 10
aaa port-access mac-based 1-8 reauth-period 600
aaa port-access mac-based 1-8 unauth-vid 97
aaa port-access mac-based 1-8 addr-limit 3
aaa port-access 1-8 controlled-direction in
ACLS Slide
Further Reading
• Lynda.com https://www.lynda.com/Windows-Server-
tutorials/Overview-Network-Policy-Server-NPS/459490/505660-
4.html

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy