Hi there,
I would to achieve centralized wireless authentication from several small offices NOT directly connected to the company's network.
In other words there are NOT mpls or vpn connections, thus internal NPS servers cannot be reached directly from branch offices.
I'm wondering if using NPS proxies published over Internet is a good idea or not ...
Can I secure enough the traffic using PEAP on internal NPS servers or still some sensitive parts of Radius packets are sent in clear text ?
Thank you
Riccardo