Checkout next part of this series here kzbin.info/www/bejne/h4TRmmV_hZWEgK8 . Wi-Fi network settings deployment through GPO.

Thank you so much, brother, great content!! . Note: If someone is having issues make sure to also open the inbound firewall port UDP 1812 on your server, and if you have a network firewall also make sure it allows that same traffic from the wireless AP to the Radius Server.

BROTHER!! You are so awesome!! Your video is great! keep up the work! Perfectly edited, you made sure we dont waste time. I am a person who never comments on any video or likes or subscribes. But I have done all this because your work impressed me. The explanation is clear and precise.

Finally got this to work, I knew it was a server config error, but this explained it very well, bravo!

man I really appreciate it, I spent hours trying to do it without on my own. I was missing the certificate part, I didn't know it was required. Even though that I have enabled all authentication methods. Thank you very much.

Excellent Video!!! Thank you so much for making this, I’ve been trying to do this for years and all the videos I follow something doesn’t work. Follows the instructions In this video and now my wifi is using a fully functional radius server. Thanks so much

It would be beneficial to provide concise explanations for the addition of certain roles and features. This way, the audience can better understand the purpose of these steps. Additionally, some users may find it unclear how to establish connections or create another virtual machine linked to the server for testing its functionality. Anyways, thank you for creating this video.

Thank you for the video, I tested this with a ubiquiti Wifi and it worked

Thank you for the very super helpful and detailed guide, I used this today and it was most helpful.

Thank you sir for the great video I have a query, If I follow this tutorial how could I achieve the requirement to setup Radius server for Wireless Users Authentication. I need to set up RADIUS for our Wireless Access Points (APs). The challenge I'm facing is RADIUS server is separate machine and I need guidance on how to properly link the AD with the RADIUS server which the requirement is to create on Separate machine. Could anyone help me understand the additional steps involved in configuring RADIUS server and how to integrate the AD and RADIUS? (Does the Radius Server could be the Domain User and then it integrate as well? What would be the configuration at AD and Radius for integration) I would appreciate a detailed breakdown of the additional configurations needed on both ends. If you have any documents, guidelines, or videos that could walk me through the process, that would be immensely helpful. I’ve been unable to find the right resources so far.

Great video, a very nice explanation of the components to achieve the goal, thanks, you've helped a lot today!

Thank you for this great and direct guide towards RADIUS

Somethings are incorrect. Like the thumbprint mentioned is different than the one showed... But that is because it is stitched together I think.

Very cool and informative. Do ADCS and NPS need to be on the same server as DC?

very well done bro. useful information with easy explanation and examples

Very detailed and excellent video. Dear we have some quires will you please help us out. We have Multiple VLAN's for Multiple SSID's all VLAN's are in different IP pools. So kindly guide us if we define multiple IP scope for multiple SSID's how user can authenticate to their particular specific SSID ? Waiting for your response.

Hi bro, beautiful video, are you using vmware workstation or bare metal?

As always...an excellent video. Thanks very much.

Hello, I have configured the radius server and it works. On the session I have the button to connect but I also have the possibility of entering another login / mdp how to prevent this? THANKS

Thanks for the great content and it was really helpful as I was looking to learn more about servers

Excellent guide! However, I - for whatever reason - cannot get mine to work. It is stuck on "Checking Network Requirements". Event viewer reveals repeated 802.1x authentication restarts. Our DHCP is currently running on our Meraki firewall, with the DNS running on DCs. Any idea what might be the cause?

Thank you for the very detailed instructions, sir! Very helpful!

Excellent video. Thanks for posting.

Well done demonstration, Jay Mann. Any plans on an upcoming video on SSO 802.1X GPO for WS2016/W10?

Nice video .. Just a quick question, how do you set up similarly for Guest Users? Please post me some steps, appreciate your help. Thanks

Excellent Video. Pls i need to know. If I have multiple Domain Controllers does requesting certificate on one DC replicate to the others?

Great video, I can get communication when I’m on the normal net but it doesn’t work on the enterprise net any tips? Also I had to put the router in bridge mode for communication to occur

Thank you so much this wonderful video..

Hi, Great video, did you register the NPS in Active Directory also?

Great video. Can you please offer advice on how to install a certificate from a trusted CA so that mobile clients are not asked to Trust the CA when connecting?

How would guest connect their macOS when policy is computer based with certificate authentication? How would guest get/request certificate and where to place in macOS.

I have a problem. We would like to allow only domain computers and when the NPS authenticates the computer it need toi asks for username and password, but when we add the group( Domain computers/Users in the same policy the NPS does not allow access. If we create 2 separate policies this one does not ask for password since the domain computer is already authenticated with cert. Any help

it was in detailed video, thanks for sharing. what if i just want the laptops that are in domain only be able to connect in that case i think we will set the local computers group instead of users. but if we dont add user groups how the username and password will work to connect???

Thank you for the great tutorials! I am pretty green when it comes to certificates. So it looks like the GPO will automatically renew the certificate. But what about on the domain controller/CA? I assume when those certificates are close to expiring i'll have to manually go in and create/renew the certificate?

Thanks for this content, it is very helpful.

Hi, Please could you help me with using Microsoft NPS and setting up a test OU for machine-based wired and wireless authentication? created an SSID on our cisco interface which points the wireless to the correct authentication server and perhaps the same on our switches.

What if my AD CS role wasn’t install in the domain controller but other server? Do I need to request the certificate in the DC but not my server, which got AD CS role? Thank you.

Hi Jay, did you use your Wireless Router as Default-Gateway ?

Hello Jay, Thank you for your video. I'm having issues connecting to the wifi network. Everytime i fill in my credentials it loads and sends me back to where i need to put in the credentials, without giving me an error message. When i test this with the built in authentication tester in my AP it does work... I'm using a Ruckus zoneflex r510.

Thanks for this! Quick querry, i have my mx84 act as dhcp server, i am able to authenticate from nps but not getting an IP, appreciate if you can give light on this, thanks!

How can we specify which SSID The users from the Network group will be connecting? If I have multiple SSIDs but I do not want users from the Security group1(SSID1) to SSID2

Hello! I have a problem here. I have windows server 2012 and AD DNS DHCP install than I turn off dhcp on my wireless router, my pc get IP address from my dhcp server but my device can’t get IP address from WiFi! So any help pls thx.

Hi Jay, I have some question about the certificate. For user authentication like this, does the certificate have to be installed on the client side or only on the server side?

Amazing Video with Smooth Process. Why td-w8980.test.local device level setup is missing in this video ? this device is windows server or a windows client machine ?

Thank you for the great tutorials!

Hi.. If possible I need to get some help... Setup made successfully but not able to connect Wi-Fi...

How to check existing configuration 802.11x ? Cause i have problem 1 group cannot connect to wifi

Hi, this is a really great video. I was thinking of applying this a similar concept using username and password only for a College for Students to access resources with their personal machines, and not the domain computers. What would I have to change to make this happen. I'd prefer to not have to use certificates for the students' laptops.

Excellent tutorial!!! Thanks!

Hi, this is a great video. I appreciate your content. Question though, is there any way to avoid the prompting of the certificate notice during the authentication process?

Thanks dude.. Can Android clients Access their home folder via a file explorer ?

Hey Jay, I'm getting the following message when connecting to the Wi-Fi: If you expect to find [wireless SSID name] in this location, go ahead and connect. Otherwise, it may be a different network with the same name. Do you know how I can remove this warning for my clients? Thank You.

I see mostly tutorials on how to do authentication with a domain user. Is there a tutorial or an easy way to do this with a certificate by itself? I was reading about TLS authentication, which i think would work. We've got several thousand chromebooks, and a new wifi network we're deploying. I don't really want to have to explain to everyone how to log in. I just want it to be seamless.

do you have a guide on how to apply captive portal using this?

Nicely explained 👌

hi it was a nice video. but i would like to know. if user is already part of domain then how to skip putting user/pass while connecting to wifi. it should be automated. any suggestion on it.

you are awesome bro ... i am getting an error "Unable to join wifi-sid". Can you help what should I have to checked. I am using server 2022

Great detailed guide!!

Hi. Good video, I have a problem specifying the type of installation of the CA, the CA enterprise mode appears disabled and I would like to know why ?. Thanks for the video best explained

Can you please make a video on Wired authentication?

So is the 'windows server 2016' (the thing on the right in your connection diagram in the beginning of the video) a physical machine connected via Ethernet or can you have this as a virtual one in a virtual box? fyi im a total noob

The Radius server use user and password to sincronize with LDAP?

Have you configured NAT rule in your physical machine to enable connection for Hyper-V?

Hey, Thanks for tutorial. Can I authenticate W-Fi(with certificate integrated) on a win 10 client present in Workgroup? Or is it a pre-requisite for the client to join a Domain?

what should i do if i already have DHCP from my firewall

thank you for sharing this video, how can we create the policy when mobile device user authenticates with ID and password, after admin approval they can get the access. Because when i was created SSID with AD authentication our all employee uses same on mobile devices also and it is not good our security perspective. pls help in this

Hi Jay, Just another question if i plan AD in one server and NPS on another server what is the best practice to install CA? is it on AD server or NPS server ?

How about for wired connection authentication with Windows Server?

If I change WPA password into radius password now I not able to connecting what I should do

Hello! I have configured it as in your video, but it fails to connect to Enterprise WiFi. I entered the credentials and press connect and then it switches back to enter the credentials again? I tried to connect on my PC/laptop/Android device, but it fails on every device. How to fix this issue? Thanks.

Any one had problems getting this to work under Server 2K8 R2 with Windows 7 and/or Windows 10 clients? I believe I've followed all the steps clearly. Android mobile clients are authenticated, however my Windows clients keep asking for credentials over and over again. Any suggestions? As an FYI, none of the clients have ever joined the domain, but this is the same for the android devices. So I'm assuming I should not have any problems but I am unfortunately. Your video is very much detailed, thanks for the efforts and energies invested to create and publish.

Can we authenticate users with radius coming as visitor and connect our wifi ?

Setting for android phone ? Kindly

Thank you for the tutorial. It's working fine with Dlink Ap and windiws srv 2012 standard. But the issue is not working for non domain pc.... Any help with that please?

Thanks for this demonstration. A research a possibility to have mutiple SSID depending of groups in AD. I think i need multiple radius server on my server (if it's possible) but i'v not yet find a way. If anyone have a idea... thank for it

What if your DHCP server is elsewhere ?

You are amazing!! Do you know why Android device connecting the WiFi ask weird question beside the username and password. Question about certificate

Amazing stuff!!

il nostro prof. ci costringe a vedere sto video

Thank you budy it helped a lot

Brilliant!

If my radius server is not a domain controller, how do I need to create the certificate? Do I create it on the domain controller, export it, and import it on the radius server? Or do I create a certificate locally on the radius server (the only cert option is 'Computer)'?

I cannot get this to work with my Fortigate device at all.

very nice ... Thanks

Hi Jay, if we have number of APs (around 10-15) working in a single cluster. do we have to add each as a client in NPS clients ? or only master AP would enough ?

Hi, We have configured the Radius Server (NPS) for Wi-Fi authentication. However, we are currently experiencing an issue: when an Active Directory user's password expires, the Wi-Fi connection is disconnected. Upon attempting to re-authenticate, the system indicates incorrect credentials. We have enabled the setting to reset the AD user password in the Radius Server Policy, but our attempts to reset the password have been unsuccessful. Could you please assist us in resolving this issue?

i was able to get it to ask for user and password, but it will not authenitcate to get wifi access :(

i follow step by step but does'nt work. i user radius server as server but not dc. In my enviornment, i have dc and member server radius server and unify network.

Thank you from France

how to bind mac address for the users in AD

I have configured the radius and NPS services by following the same steps but when try to connect Wi-Fi a error showing "unable to connected" kindly guide how to resolve this problem

Hello I am not able to connect when i enter user name and password. Please help me.. I followed all the steps.

Great Video!!!

Hi, I have an issue with the certificate. The user connected just fine and have internet connection. But, the certificate is not showing up.

Hello thanks for your clear video.. I have a pb. I have installed every thing clean, but I want users to log via WiFi before they open a session on Windows... Clients are not logged with wire, they need to connect to WiFi first to have network, and then authenticate with Windows prompt login screen, which is 2 authentications... So bad idea.. Do you know how to connect to the Windows session through WiFi authentication? Thanks a lot if you have an answer dude 👍👍👍

What will be the Network setting in Vmware 12 if we want to deploy it physical network thorough Vmware

how can your router get dhcp from the server

Guys what computer should i use?

how can i use the same setup but without the users having to enter username and password? Basically only have provided them the certificate to authenticate.

very nicely presented!