Skip to main content
CHR57
CHR57
Explorer II
April 5, 2022
Question

WPA2 Ent with cert

  • April 5, 2022
  • 3 replies
  • 3752 views

Hi, running Fortigate 6.4 with Forti APs.

Looking for setting up WPA2 Ent with a single local user and cert on the Windows clients to only allow clients with the cert (instead of using MAC filtering).

 

Is that doable and can someone point me in the right direction?

3 replies

CHR57
CHR57Author
Explorer II
April 12, 2022

Hi, any news to this one?

 

/Chr

CHR57
CHR57Author
Explorer II
April 13, 2022

I suppost wthat I want is to have the Fortigate to use the wifi / SID / Authentication local to use eap-tls and the client and Fortigate to have matching certificates.
Possible? Or do I need to have a Radius for that? Sound like a waste to have a Radius for one user.

jhussain_FTNT
Staff
jhussain_FTNT
Staff
April 13, 2022

Hi,

If you are looking for configure with WAP2 Enterprise with EAP TLS (Certificate) you need to have radius server or Fortiauthenticator. In Fortigate you can configure EAP-PEAP with configuring the local user on Fortigate.

 

Regards

Jamal

CHR57
CHR57Author
Explorer II
August 3, 2022

Are there any guides out there on how to configure for example freeradius to do what I want to do?

jhussain_FTNT
Staff
jhussain_FTNT
Staff
August 11, 2022

Hi,

 

You can configure NPS (radius) on the windows server.

Kindly refer the below document.

https://community.fortinet.com/t5/FortiGate/Radius-Authentication-for-WiFi-WPA2-Enterprise-Windows-2008-with/ta-p/194910?externalID=FD36088

 

Regards

Jamal

    Terms & ConditionsAccessibility statement