How was your multicast configured? Past the controller-multicast, the
important piece is the AP Multicast mode set on the general page. If
it's set to Unicast, pain and suffering can occur. Also, have you
enabled any of the Media Stream features?
Are you still working with Cisco TAC, or have you
We're feeling some frustration with our current RADIUS solution (ACS 5, virtual
appliances) that are frequently attributed to the size of our client base. (At
the same time, the logging and reporting on ACS is among the best I've ever
seen.)
For those of you with large (10,000 + users) RADIUS d
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Tue Nov 01 2011 13:25:20 Central Time, Lee H Badman wrote:
>
> For those of you with large (10,000 + users) RADIUS deployments, what servers
> are you using and what are your points of pain and/or appreciation?
We're currently using Steel Belted
Freeradius on Linux using AD backend for 802.1x and LDAP (ssl) for everything
else. We have 4 servers for 2 services areas.
Logging/reporting is all homegrown, but we'll probably end up with a commercial
product after our next upgrade cycle.
---
Rob Cola
Lee,
I will speak as UTK and eduroam-US.
We see a lot of satisfaction with the following three RADIUS flavors:
-RADIATOR (supported, very affordable, and PERL based...easy to customize,
keeps up with innovations: RadSec, CUI,...)
-FreeRADIUS (open Source, FREE, C based, support community, keeps
Lee,
If you want to see some configuration examples
for six RADIUS flavors go there:
https://www.eduroamus.org/radius_configuration
This will not give you examples of how to do PEAP, but you will have a good idea
of how the various flavors are configured for proxying.
Philippe
On Nov 1, 2011, a
I have been looking at getting ACS as a replacement for our radius servers.
(idengines) Can you speak about some of the issues you have with ACS. I use
the same for my EAP type and have roughly same number of users too. Could be
helpful if there are some gotchas before I make the purchase.
T
We've been running FreeRADIUS on freeBSD since 2008 and could not be
happier. We authenticate over 12K users per day. We use it only for our
wireless network (802.1X/MS-CHAPv2/PEAP). It's fast, it's scalable and best
of all, it's free!
Thanks,
Hector Rios
Louisiana State University
Found this odd that there is a version of WCS that supports this new code, but
not NCS.
http://www.cisco.com/en/US/docs/wireless/ncs/1.0/release/notes/NCS_RN1.0.1.html#wp175137
Trent
Trenton Hurt, CCNP(W), CCNA(W), CCNA(V), CCNA(R/S)
Wireless Network Administrator
University of Louisville
Ph
On 01/11/2011 17:56, Jeffrey Sessler wrote:
How was your multicast configured? Past the controller-multicast, the
important piece is the AP Multicast mode set on the general page. If it's
set to Unicast, pain and suffering can occur. Also, have you enabled any
of the Media Stream features?
Are yo
+1 for FreeRADIUS ;)
-Arran
On 1 Nov 2011, at 20:19, Hector J Rios wrote:
> We've been running FreeRADIUS on freeBSD since 2008 and could not be happier.
> We authenticate over 12K users per day. We use it only for our wireless
> network (802.1X/MS-CHAPv2/PEAP). It's fast, it's scalable and be
Freeradius on RHEL5.X
We support PEAP/MSCHAP and TTLS/PAP
As far as NAS clients, we have maybe 750-1,000 clients (though some of these
are netblock ranges)
As far as user clients, we have almost 400K authentications a day (smart phones
like to auth a lot) from approximately 30,000 unique users
Freeradius
We support TTLS/PAP with a MIT Kerberos backend.
Typical day we do 330K authentications in a day, with about 18K unique
users. Like U of M,
most are smart phones.
We have 2 servers handling this.
John Kalbach Information Technology Services
kalb...@psu.edu
Lee,
We're using the Avaya's Identity Engines Ignition product. It's a
virtual appliance, we run a pair in HA mode, and it's servicing requests
for 10K+ users.
We had been using Ignition back when idEngines was around, followed it
to Nortel, and then to Avaya. We were particularly interested in
14 matches
Mail list logo
