Pretty Simple Requirements for our Radius
- Allow domain joined PC's access to the wireless using AD Creds (no client cert) - PEAP-MSCHAPv2
- Allow non domain PC's access to the wireless using AD Creds (no client cert) - PEAP-MSCHAPv2
- Allow non domain joined phones/tables access to the wireless with AD Creds. (no client cert) - PEAP-MSCHAPv2
All users will have AD credentials but my company does alot of BYOD so therefore many of the devices are non domain.
We currently are running radius on an old Cisco 4.2 server that is going end of life. That server has only a self gen cert on it and we do not have to worry about client side certs.
We are just looking to see if we can replace our current ACS deployment with a Windows offering.
Thanks
Mike