Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
CHR57
New Contributor III

WPA2 Ent with cert

Hi, running Fortigate 6.4 with Forti APs.

Looking for setting up WPA2 Ent with a single local user and cert on the Windows clients to only allow clients with the cert (instead of using MAC filtering).

 

Is that doable and can someone point me in the right direction?

5 REPLIES 5
CHR57
New Contributor III

Hi, any news to this one?

 

/Chr

CHR57
New Contributor III

I suppost wthat I want is to have the Fortigate to use the wifi / SID / Authentication local to use eap-tls and the client and Fortigate to have matching certificates.
Possible? Or do I need to have a Radius for that? Sound like a waste to have a Radius for one user.

jhussain_FTNT

Hi,

If you are looking for configure with WAP2 Enterprise with EAP TLS (Certificate) you need to have radius server or Fortiauthenticator. In Fortigate you can configure EAP-PEAP with configuring the local user on Fortigate.

 

Regards

Jamal

CHR57
New Contributor III

Are there any guides out there on how to configure for example freeradius to do what I want to do?

jhussain_FTNT

Hi,

 

You can configure NPS (radius) on the windows server.

Kindly refer the below document.

https://community.fortinet.com/t5/FortiGate/Radius-Authentication-for-WiFi-WPA2-Enterprise-Windows-2...

 

Regards

Jamal