RADIUS authentication for MAC addresses
I am still waiting for my Leopard Server upgrade to arrive, but I have downloaded and read the manuals.
A RADIUS server has been added to Leopard (I actually sent feedback requesting this a long time ago). From the manual however, it appears however to be limited to user authentication via LEAP.
I was hoping for a full-blown RADIUS server that could be used for various purposes, including authenticating wireless computers via their MAC address. This is a feature that the AirPort Extreme base stations do support. I would also like to use it for dialup or VPN user authentication, for example my hardware firewall supports authenticating user accounts for vpn access via the firewall.
Unfortunately, the Apple manuals almost totally lack examples (and for that matter diagrams, remember a picture is worth a 1000 words), and are very skimpy on details. The Unix man pages would probably be a better source of information except I am still waiting for the software to arrive 😟
Has anyone had a chance to kick the tyres of the new RADIUS server and can comment?
I was hoping it would be possible to define a computer group (which is based on MAC addresses), and have the Airport basestations check that the access attempt is from a member of the group you have defined as being allowed access. Just like you can have a user group defined to allow VPN access for only users that are a member of that group.
A RADIUS server has been added to Leopard (I actually sent feedback requesting this a long time ago). From the manual however, it appears however to be limited to user authentication via LEAP.
I was hoping for a full-blown RADIUS server that could be used for various purposes, including authenticating wireless computers via their MAC address. This is a feature that the AirPort Extreme base stations do support. I would also like to use it for dialup or VPN user authentication, for example my hardware firewall supports authenticating user accounts for vpn access via the firewall.
Unfortunately, the Apple manuals almost totally lack examples (and for that matter diagrams, remember a picture is worth a 1000 words), and are very skimpy on details. The Unix man pages would probably be a better source of information except I am still waiting for the software to arrive 😟
Has anyone had a chance to kick the tyres of the new RADIUS server and can comment?
I was hoping it would be possible to define a computer group (which is based on MAC addresses), and have the Airport basestations check that the access attempt is from a member of the group you have defined as being allowed access. Just like you can have a user group defined to allow VPN access for only users that are a member of that group.
PowerBook G4, Mac OS X (10.4.10)
